RE: [ILUG] Fwd: will the love ever cease? <unix now targeted>

From: Kenn Humborg (kenn at domain bluetree.ie)
Date: Tue 09 May 2000 - 13:25:46 IST

• Next message: Robert D. Elliott: "Re: [ILUG] Fwd: will the love ever cease? <unix now targeted>"
• Previous message: Diarmaid O'Loughlin: "[ILUG] Linuxy CO-OP."
• In reply to: Justin Mason: "Re: [ILUG] Fwd: will the love ever cease? <unix now targeted>"
• Next in thread: Paul Jakma: "Re: [ILUG] Fwd: will the love ever cease? <unix now targeted>"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

> BTW Paul are you serious about older versions of pine running attached
> shell scripts?? That's *so* broken.

There was a buffer overflow in Pine's (and mutt's IIRC) handling
of MIME headers as one stage.

A specially crafted, long, Content-Type: header (or similar)
could overflow the stack and allow arbitrary code to be run.

Nasty.

Fixed _really_ quickly of course...

I'm sure www.securityfocus.com will have details in their archives
somewhere.

Later,
Kenn

• Next message: Robert D. Elliott: "Re: [ILUG] Fwd: will the love ever cease? <unix now targeted>"
• Previous message: Diarmaid O'Loughlin: "[ILUG] Linuxy CO-OP."
• In reply to: Justin Mason: "Re: [ILUG] Fwd: will the love ever cease? <unix now targeted>"
• Next in thread: Paul Jakma: "Re: [ILUG] Fwd: will the love ever cease? <unix now targeted>"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:06:04 GMT