Test ID:	1.3.6.1.4.1.25623.1.0.52188
Category:	FreeBSD Local Security Checks
Title:	FreeBSD Ports: zh-emacs, emacs
Summary:	The remote host is missing an update to the system; as announced in the referenced advisory.
Description:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: zh-emacs emacs xemacs xemacs-mule zh-xemacs zh-xemacs-mule xemacs-devel xemacs-devel-21.5 xemacs-devel-mule mule-common hanemacs CVE-2005-0100 Format string vulnerability in the movemail utility in (1) Emacs 20.x, 21.3, and possibly other versions, and (2) XEmacs 21.4 and earlier, allows remote malicious POP3 servers to execute arbitrary code via crafted packets. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0100 BugTraq ID: 12462 http://www.securityfocus.com/bid/12462 Bugtraq: 20050207 [USN-76-1] Emacs vulnerability (Google Search) http://marc.info/?l=bugtraq&m=110780416112719&w=2 Debian Security Information: DSA-670 (Google Search) http://www.debian.org/security/2005/dsa-670 Debian Security Information: DSA-671 (Google Search) http://www.debian.org/security/2005/dsa-671 Debian Security Information: DSA-685 (Google Search) http://www.debian.org/security/2005/dsa-685 http://www.securityfocus.com/archive/1/433928/30/5010/threaded http://www.mandriva.com/security/advisories?name=MDKSA-2005:038 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9408 http://www.redhat.com/support/errata/RHSA-2005-110.html http://www.redhat.com/support/errata/RHSA-2005-112.html http://www.redhat.com/support/errata/RHSA-2005-133.html XForce ISS Database: xemacs-movemail-format-string(19246) https://exchange.xforce.ibmcloud.com/vulnerabilities/19246
Copyright	Copyright (C) 2008 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.