emacs -- movemail format string vulnerability

ID 3E3C860D-7DAE-11D9-A9E7-0001020EED82
Type freebsd
Reporter FreeBSD
Modified 2005-01-31T00:00:00


Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs. They can be exploited when connecting to a malicious POP server and can allow an attacker can execute arbitrary code under the privileges of the user running Emacs.