Lucene search
Gentoo FoundationGLSA-200603-16HistoryMar 17, 2006 - 12:00 a.m.
Metamail: Buffer overflow
2006-03-1700:00:00
Gentoo Foundation
security.gentoo.org
7
0.121 Low
EPSS
Percentile
95.4%
Background
Metamail is a program that decodes MIME encoded mail.
Description
Ulf Harnhammar discovered a buffer overflow in Metamail when processing mime boundraries.
Impact
By sending a specially crafted email, attackers could potentially exploit this vulnerability to crash Metamail or to execute arbitrary code.
Workaround
There is no known workaround at this time.
Resolution
All Metamail users should update to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-mail/metamail-2.7.45.3-r1"
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Gentoo | any | all | net-mail/metamail | < 2.7.45.3-r1 | UNKNOWN |
Related
nessus
nessus
Debian DSA-995-1 : metamail - buffer overflow
2006-10-14 00:00:00
Mandrake Linux Security Advisory : metamail (MDKSA-2006:047)
2006-02-27 00:00:00
GLSA-200603-16 : Metamail: Buffer overflow
2006-03-18 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200603-16 (metamail)
2008-09-24 00:00:00
Debian Security Advisory DSA 995-1 (metamail)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200603-16 (metamail)
2008-09-24 00:00:00
debian
debian
[SECURITY] [DSA 995-1] New metamail packages fix arbitrary code execution
2006-03-13 08:25:35
[SECURITY] [DSA 995-1] New metamail packages fix arbitrary code execution
2006-03-13 00:00:00
osv
osv
metamail - buffer overflow
2006-03-13 00:00:00
centos
centos
metamail security update
2006-02-22 00:38:44
securityvulns
securityvulns
[ MDKSA-2006:047 ] - Updated metamail packages fix vulnerability
2006-02-24 00:00:00
redhat
redhat
(RHSA-2006:0217) metamail security update
2006-02-21 00:00:00
cve
cve
CVE-2006-0709
2006-02-15 11:06:00
cvelist
cvelist
CVE-2006-0709
2006-02-15 11:00:00
prion
prion
Buffer overflow
2006-02-15 11:06:00
ubuntucve
ubuntucve
CVE-2006-0709
2006-02-15 00:00:00