FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Buffer overflows and format string bugs in Emil

Affected packages
emil <= 2.1b9

Details

VuXML ID ce46b93a-80f2-11d8-9645-0020ed76ef5a
Discovery 2004-03-24
Entry 2004-03-28

Ulf Härnhammar reports multiple buffer overflows in Emil, some of which are triggered during the parsing of attachment filenames. In addition, some format string bugs are present in the error reporting code.

Depending upon local configuration, these vulnerabilities may be exploited using specially crafted messages in order to execute arbitrary code running with the privileges of the user invoking Emil.

References

CVE Name CVE-2004-0152
CVE Name CVE-2004-0153
Message http://lists.netsys.com/pipermail/full-disclosure/2004-March/019325.html
URL http://www.debian.org/security/2004/dsa-468