Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
[ GLSA 200505-20 ] Mailutils: Multiple vulnerabilities in imap4d and mail
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index News & Announcements
View previous topic :: View next topic  
Author Message
GLSA
Veteran
Veteran


Joined: 12 May 2004
Posts: 1612

PostPosted: Fri May 27, 2005 11:44 am    Post subject: [ GLSA 200505-20 ] Mailutils: Multiple vulnerabilities in im Reply with quote

Gentoo Linux Security Advisory

Title: Mailutils: Multiple vulnerabilities in imap4d and mail (GLSA 200505-20)
Severity: high
Exploitable: remote
Date: May 27, 2005
Bug(s): #94053
ID: 200505-20

Synopsis

The imap4d server and the mail utility from GNU Mailutils contain multiple vulnerabilities, potentially allowing a remote attacker to execute arbitrary code with root privileges.

Background

GNU Mailutils is a collection of mail-related utilities, including an IMAP4 server (imap4d) and a Mail User Agent (mail).

Affected Packages

Package: net-mail/mailutils
Vulnerable: < 0.6-r1
Unaffected: >= 0.6-r1
Architectures: All supported architectures


Description

infamous41d discovered several vulnerabilities in GNU Mailutils. imap4d does not correctly implement formatted printing of command tags (CAN-2005-1523), fails to validate the range sequence of the "FETCH" command (CAN-2005-1522), and contains an integer overflow in the "fetch_io" routine (CAN-2005-1521). mail contains a buffer overflow in "header_get_field_name()" (CAN-2005-1520).

Impact

A remote attacker can exploit the format string and integer overflow in imap4d to execute arbitrary code as the imap4d user, which is usually root. By sending a specially crafted email message, a remote attacker could exploit the buffer overflow in the "mail" utility to execute arbitrary code with the rights of the user running mail. Finally, a remote attacker can also trigger a Denial of Service by sending a malicious FETCH command to an affected imap4d, causing excessive resource consumption.

Workaround

There are no known workarounds at this time.

Resolution

All GNU Mailutils users should upgrade to the latest available version:
Code:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-mail/mailutils-0.6-r1"


References

CAN-2005-1520
CAN-2005-1521
CAN-2005-1522
CAN-2005-1523
iDEFENSE 05.25.05 advisories


Last edited by GLSA on Sun May 07, 2006 4:57 pm; edited 1 time in total
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index News & Announcements All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum