Bugtraq mailing list archives
Re: Pine _again_ :)
From: ambrose () MMAE ENGR UCF EDU (Ambrose Feinstein)
Date: Wed, 10 Feb 1999 06:30:29 -0500
PINE can be made to crash if /var/spool/mail/<who> contains a line along the lines of "From AAAAAAAAAAAA" where the A's number ~10000. If you are lucky your MTA will truncate this line safely, preventing remote exploit.
using sendmail (actually smail on this host) to send myself a message with a 10k arg for -f, i see that mailx (solaris 2.6 sparc) handles such huge headers poorly. it mangled the previous message in my mailbox, and trying to reply to the offending message raised sigsegv.
Current thread:
- Re: Pine _again_ :) Ambrose Feinstein (Feb 10)
- <Possible follow-ups>
- Re: Pine _again_ :) funkySh (Feb 10)