Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/fetchmail@6.2.5-6.el4?arch=2

Type rpm

Namespace redhat

Name fetchmail

Version 6.2.5-6.el4

Qualifiers

arch	2

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-fdpq-937n-63hu

vulnerability_id

VCID-fdpq-937n-63hu

summary

Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows remote POP3 servers to cause a denial of service and possibly execute arbitrary code via long UIDL responses. NOTE: a typo in an advisory accidentally used the wrong CVE identifier for the Fetchmail issue. This is the correct identifier.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2335.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2335.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2005-2335

reference_id

reference_type

scores

value	0.06437
scoring_system	epss
scoring_elements	0.91223
published_at	2026-06-04T12:55:00Z

value	0.06437
scoring_system	epss
scoring_elements	0.91235
published_at	2026-06-06T12:55:00Z

value	0.06437
scoring_system	epss
scoring_elements	0.91232
published_at	2026-06-07T12:55:00Z

value	0.06437
scoring_system	epss
scoring_elements	0.91228
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2005-2335

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2335
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2335

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1617705
reference_id	1617705
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1617705

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=320357
reference_id	320357
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=320357

reference_url	https://access.redhat.com/errata/RHSA-2005:640
reference_id	RHSA-2005:640
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2005:640

reference_url	https://usn.ubuntu.com/153-1/
reference_id	USN-153-1
reference_type
scores
url	https://usn.ubuntu.com/153-1/

fixed_packages

aliases

CVE-2005-2335

risk_score

0.1

exploitability

0.5

weighted_severity

0.1

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-fdpq-937n-63hu

Fixing_vulnerabilities

Risk_score 0.1

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fetchmail@6.2.5-6.el4%3Farch=2

Package Instance