Pegasus Mail 4.0 1 Message Header Buffer Overflow Vulnerability

ID EDB-ID:21648
Type exploitdb
Reporter Auriemma Luigi
Modified 2002-07-24T00:00:00


Pegasus Mail 4.0 1 Message Header Buffer Overflow Vulnerability. CVE-2002-1075. Remote exploit for windows platform


Pegasus Mail is an email client for Microsoft Windows and DOS based systems. A buffer overflow vulnerability has been reported in some versions of Pegasus Mail.

Reportedly, Pegasus is vulnerable to a buffer overflow condition when processing some long message headers. If either the 'To:' or 'From:' message headers are longer than approximately 259 characters, Pegasus may crash when displaying the message.

This issue has been reported in Pegasus Mail 4.01. Earlier versions may share this vulnerability, this has not however been confirmed.