Multiple stack-based buffer overflows in (1) the encode_mime function, (2) the encode_uuencode function, (3) or the decode_uuencode function for emil 2.1.0 and earlier allow remote attackers to execute arbitrary code via e-mail messages containing attachments with filenames.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Emil | Emil | 2.0.4 (including) | 2.0.4 (including) |
| Emil | Emil | 2.0.5 (including) | 2.0.5 (including) |
| Emil | Emil | 2.1.0_beta9 (including) | 2.1.0_beta9 (including) |
| Emil | Ubuntu | dapper | * |
| Emil | Ubuntu | devel | * |
| Emil | Ubuntu | edgy | * |
| Emil | Ubuntu | feisty | * |
References
- http://marc.info/?l=bugtraq\u0026m=108024939827236\u0026w=2
- http://www.debian.org/security/2004/dsa-468
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15601
- http://marc.info/?l=bugtraq\u0026m=108024939827236\u0026w=2
- http://www.debian.org/security/2004/dsa-468
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15601