Vulnerability Development mailing list archives
Re: procmail heap overflow
From: Przemyslaw Frasunek <venglin () freebsd lublin pl>
Date: 19 Jun 2002 10:12:10 +0200
flatline <flatline () blackhat nl> napisał(a):
i found a heap overflow in procmail (up until latest) some time ago.
Actually, the latest version of procmail is 3.22 (2001/09/10), which is not vulnerable: $ ./procmail `perl -e 'print "A"x10240'`=A ^Cprocmail: Terminating prematurely AFAIR, this problem was reported quite a long time ago by Michał Zalewski.
flatline@intra:/usr/bin$ ls -la procmail -rwsr-xr-x 1 root mail 64344 Jun 3 2001 procmail*
Your version of procmail looks like older than 3.22. BTW. Recent versions of procmail segfaults after SIGINT/SIGTERM/SIGHUP when invoked with no arguments and no input: [venglin@clitoris venglin]$ procmail procmail: Terminating prematurely Segmentation fault But this is probably only a minor bug. -- * Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NIC-HDL: PMF9-RIPE * * Inet: przemyslaw () frasunek com ** PGP: D48684904685DF43EA93AFA13BE170BF *
Current thread:
- procmail heap overflow flatline (Jun 19)
- Re: procmail heap overflow Ryan W. Maple (Jun 19)
- Re: procmail heap overflow Przemyslaw Frasunek (Jun 19)
- RE: procmail heap overflow Christopher Meiklejohn (Jun 19)
- Re: procmail heap overflow kam (Jun 19)
- Re: procmail heap overflow SpaceWalker (Jun 19)
- Re: procmail heap overflow KF (Jun 19)
- <Possible follow-ups>
- RE: procmail heap overflow Peter Mueller (Jun 19)
- Re: procmail heap overflow Artur Byszko / bikero (Jun 20)
- Re: procmail heap overflow Przemyslaw Frasunek (Jun 21)
- Re: procmail heap overflow Artur Byszko / bikero (Jun 20)
- RE: procmail heap overflow Wodahs Latigid (Jun 20)
- Re: procmail heap overflow Skot (Jun 20)
- RE: procmail heap overflow Peter Mueller (Jun 20)