FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2004-0152

This CVE name corresponds to:

Entered Topic
2004-03-28 Buffer overflows and format string bugs in Emil

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2004-0152
Phase Assigned(20040213)

Description

Multiple stack-based buffer overflows in (1) the encode_mime function, (2) the encode_uuencode function, (3) or the decode_uuencode function for emil 2.1.0 and earlier allow remote attackers to execute arbitrary code via e-mail messages containing attachments with filenames.

References

Source Reference
BUGTRAQ 20040325 Re: [SECURITY] [DSA 468-1] New emil packages fix multiple vulnerabilities
DEBIAN DSA-468
SUSE SuSE-SA:2004:008
XF emil-email-bo(15601)