Local Buffer Overflow Vulnerability in XMAIL Advisory

Posted by tadelste on Oct 20, 2005 5:19 AM EDT
FrSIRT
Mail this story
Print this story

A vulnerability has been identified in XMail, which may be exploited by malicious users to obtain elevated privileges. This issue is due to a stack overflow error in the "AddressFromAtPtr" function that does not properly handle an overly long hostname portion of an e-mail address passed to the "-t" command line option, which could be exploited by local attackers to execute arbitrary commands with "root" or "mail" privileges.

Full Story

  Nav
» Read more about: Story Type: Security

« Return to the newswire homepage

This topic does not have any threads posted yet!

You cannot post until you login.