Multiple E-mail Client Long File Name MIME Overflow

1998-07-27T05:55:00
ID OSVDB:5708
Type osvdb
Reporter Ari Takanen and Marko Laakso()
Modified 1998-07-27T05:55:00

Description

Vulnerability Description

A remote overflow exists in several mail user agents (MUAs). The MUAs fail to properly cope with tags that identify an attachment, resulting in a buffer overflow. With a specially crafted e-mail, an attacker can potentially execute arbitrary code resulting in a loss of confidentiality and/or integrity.

Technical Description

According to Netscape, this vulnerability does not apply to versions of Communicator for Windows or Macintosh.

Solution Description

Upgrade to the proper version depending on the MUA installed, according to the vendor advisories, as they have been reported to fix this vulnerability. An upgrade is required as there are no known client side workarounds.

Sendmail has implemented a patch that can be implemented as a workaround if used as an MTA. The patch is listed in the external references.

Short Description

A remote overflow exists in several mail user agents (MUAs). The MUAs fail to properly cope with tags that identify an attachment, resulting in a buffer overflow. With a specially crafted e-mail, an attacker can potentially execute arbitrary code resulting in a loss of confidentiality and/or integrity.

References:

Vendor Specific Advisory URL Vendor Specific Advisory URL Microsoft Security Bulletin: MS99-008 ISS X-Force ID: 1217 Generic Informational URL: http://www.sendmail.org/ftp/past-releases/sendmail.8.9.1a.patch.README CVE-1999-0004 CIAC Advisory: i-077b CERT VU: 5648 CERT: CA-1998-10 Bugtraq ID: 125