Elm save_embedded_address() Remote Overflow

1998-01-29T05:29:22
ID OSVDB:6328
Type osvdb
Reporter KSR[T](ksrt@dec.net)
Modified 1998-01-29T05:29:22

Description

Vulnerability Description

A remote overflow exists in elm. The save_embedded_address() function fails to perform proper bounds checking resulting in a buffer overflow. By sending a message containing a "From" or "Reply-To" field with 512 bytes or more, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Upgrade to version 2.5.7 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in elm. The save_embedded_address() function fails to perform proper bounds checking resulting in a buffer overflow. By sending a message containing a "From" or "Reply-To" field with 512 bytes or more, an attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

Vendor URL: http://www.instinct.org/elm/ Vendor Specific Advisory URL Related OSVDB ID: 6329 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1998_1/0144.html Keyword: KSR[T] Advisory #7 ISS X-Force ID: 711 CVE-1999-1334