Vulnerability Development mailing list archives

usr/bin/newmail buffer overflow

From: SosPiro <sospiro () FREEMAIL IT>
Date: Sat, 10 Feb 2001 17:16:27 +0100

I found a buffer overflow in /usr/bin/newmail (distributed with elm 2.5
PL3) .
"newmail is a program to allow monitoring of mailboxes in an intelligent
fashion"
I tested it on my Linux Box (RedHat 6.2)
Look at this:

#newmail -w AAAA....x 7561
Segmentation Fault (core dumped)

sospiro

Current thread:

usr/bin/newmail buffer overflow SosPiro (Feb 10)
- Re: usr/bin/newmail buffer overflow Larry W. Cashdollar (Feb 10)
- <Possible follow-ups>
- Re: usr/bin/newmail buffer overflow Techno Bob (Feb 11)