Elm 'frm' Command Buffer Overflow Permits Remote Code Execution
|
|
SecurityTracker Alert ID: 1008720 |
|
SecurityTracker URL: http://securitytracker.com/id/1008720
|
|
CVE Reference:
CAN-2003-0966
(Links to External Site)
|
Updated: Jan 15 2004
|
Original Entry Date: Jan 14 2004
|
Impact:
Execution of arbitrary code via network, User access via network
|
|
|
Description:
A buffer overflow vulnerability was reported in the Elm e-mail client in the 'frm' command. A remote user can send specially crafted e-mail that, when processed by the target user with the 'frm' command, will cause arbitrary code to be executed on the target user's system.
It is reported that an e-mail file with an overly long header line can trigger the vulnerability and overflow a static buffer.
The flaw was reported by phr-redhat at nightsong.com.
|
Impact:
A remote user can send mail that may cause arbitrary code to be executed on the target user's system. The code will run with the privileges of the target user.
|
Solution:
No upstream solution was available at the time of this entry.
[Editor's note: Individual Linux distribution vendors may be issuing fixes. See the Message History section for updates.]
|
Cause:
Boundary error
|
Underlying OS:
Linux (Any), UNIX (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Wed, 14 Jan 2004 10:47:43 -0500
Subject: CAN-2003-0966
|
CVE: CAN-2003-0966
Red Hat reported that there is a buffer overflow in elm in the 'frm' command.
|
|
