sylpheed -- MIME-encoded file name buffer overflow vulnerability

2005-03-29T00:00:00
ID B1E8C810-01D0-11DA-BC08-0001020EED82
Type freebsd
Reporter FreeBSD
Modified 2005-03-29T00:00:00

Description

Sylpheed is vulnerable to a buffer overflow when displaying emails with attachments that have MIME-encoded file names. This could be used by a remote attacker to crash sylpheed potentially allowing execution of arbitrary code with the permissions of the user running sylpheed.