Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands.
https://exchange.xforce.ibmcloud.com/vulnerabilities/6235
http://www.redhat.com/support/errata/RHSA-2001-029.html
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-031.php3
http://marc.info/?l=bugtraq&m=98473109630421&w=2
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000385
http://archives.neohapsis.com/archives/bugtraq/2001-03/0246.html