Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mutt mutt mail client vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-0940
Buffer overflow in mutt mail client allows remote malicious users to execute commands via malformed MIME messages.
Mutt Mutt Mail Client
NA
CVE-2006-5297
Race condition in the safe_open function in the Mutt mail client 1.5.12 and previous versions, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.
Mutt Mutt 1.2.1
Mutt Mutt 1.2.5
Mutt Mutt 1.3.12.1
Mutt Mutt 1.3.16
Mutt Mutt 1.4.0
Mutt Mutt 1.4.1
Mutt Mutt 0.95.6
Mutt Mutt 1.2.5.5
Mutt Mutt 1.3.12
Mutt Mutt 1.3.27
Mutt Mutt 1.3.28
Mutt Mutt 1.2.5.1
Mutt Mutt 1.2.5.12
Mutt Mutt 1.3.17
Mutt Mutt 1.3.22
Mutt Mutt 1.4.2
Mutt Mutt 1.4.2.1
Mutt Mutt 1.2.5.12 Ol
Mutt Mutt 1.2.5.4
Mutt Mutt 1.3.24
Mutt Mutt 1.3.25
Mutt Mutt 1.5.10
NA
CVE-2006-5298
The mutt_adv_mktemp function in the Mutt mail client 1.5.12 and previous versions does not properly verify that temporary files have been created with restricted permissions, which might allow local users to create files with weak permissions via a race condition between the mkte...
Mutt Mutt 1.2.1
Mutt Mutt 1.2.5
Mutt Mutt 1.3.12.1
Mutt Mutt 1.3.16
Mutt Mutt 1.4.0
Mutt Mutt 1.4.1
Mutt Mutt 0.95.6
Mutt Mutt 1.2.5.5
Mutt Mutt 1.3.12
Mutt Mutt 1.3.27
Mutt Mutt 1.3.28
Mutt Mutt 1.2.5.1
Mutt Mutt 1.2.5.12
Mutt Mutt 1.3.17
Mutt Mutt 1.3.22
Mutt Mutt 1.4.2
Mutt Mutt 1.4.2.1
Mutt Mutt 1.5.10
Mutt Mutt 1.2.5.12 Ol
Mutt Mutt 1.2.5.4
Mutt Mutt 1.3.24
Mutt Mutt 1.3.25
NA
CVE-1999-0941
Mutt mail client allows a remote malicious user to execute commands via shell metacharacters.
Mutt Mutt 0.95.6
NA
CVE-2014-9116
The write_one_header function in mutt 1.5.23 does not properly handle newline characters at the beginning of a header, which allows remote malicious users to cause a denial of service (crash) via a header with an empty body, which triggers a heap-based buffer overflow in the mutt...
Suse Linux Enterprise Desktop 12
Suse Suse Linux Enterprise Server 12
Mutt Mutt 1.5.23
Debian Debian Linux 7.0
Mageia Mageia 4.0
5.9
CVSSv3
CVE-2020-14093
Mutt prior to 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response.
Mutt Mutt
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Leap 15.2
5.9
CVSSv3
CVE-2020-14954
Mutt prior to 1.14.4 and NeoMutt prior to 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data (e.g., from a man-in-the-middle attacker) and evaluates it in a TLS conte...
Mutt Mutt
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Neomutt Neomutt
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Opensuse Leap 15.1
Opensuse Leap 15.2
NA
CVE-2007-1558
The APOP protocol allows remote malicious users to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including (1) Thunderb...
Apop Protocol Apop Protocol
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started