Pegasus Mail 4.0 1 Message Header Buffer Overflow Vulnerability

2002-07-24T00:00:00
ID EDB-ID:21648
Type exploitdb
Reporter Auriemma Luigi
Modified 2002-07-24T00:00:00

Description

Pegasus Mail 4.0 1 Message Header Buffer Overflow Vulnerability. CVE-2002-1075. Remote exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/5302/info

Pegasus Mail is an email client for Microsoft Windows and DOS based systems. A buffer overflow vulnerability has been reported in some versions of Pegasus Mail.

Reportedly, Pegasus is vulnerable to a buffer overflow condition when processing some long message headers. If either the 'To:' or 'From:' message headers are longer than approximately 259 characters, Pegasus may crash when displaying the message.

This issue has been reported in Pegasus Mail 4.01. Earlier versions may share this vulnerability, this has not however been confirmed.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/21648.zip