CVE-2005-0100

Publication date 7 February 2005

Last updated 17 July 2025

Ubuntu priority

Format string vulnerability in the movemail utility in (1) Emacs 20.x, 21.3, and possibly other versions, and (2) XEmacs 21.4 and earlier, allows remote malicious POP3 servers to execute arbitrary code via crafted packets.

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
emacs21	7.04 feisty	Fixed 21.4a+1-2ubuntu1.1
	6.10 edgy	Fixed 21.4a-6ubuntu2.1
	6.06 LTS dapper	Fixed 21.4a-3ubuntu2.1
xemacs21	7.04 feisty	Fixed 21.4.18-1ubuntu1
	6.10 edgy	Fixed 21.4.18-1ubuntu1
	6.06 LTS dapper	Fixed 21.4.18-1ubuntu1

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-76-1
Emacs vulnerability
7 February 2005

Other references

https://www.cve.org/CVERecord?id=CVE-2005-0100