procmail
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Buffer overflow exploits in Windows mail clients

1998-07-29 12:27:45
from [John D. Hardin] [Permanent Link] 
There have been some serious buffer-overflow bugs reported in Outlook,
Outlook Express, et. al. that allow execution of arbitrary code or
crashing of the mail client. The problems are related to providing an
extremely long filename for attachments.

Please take a look at http://www.wolfenet.com/~jhardin/procmail-kit.html
(particularly the html-trap.procmail snippet).

Comments are solicited.

--
 John Hardin KA7OHZ                               
jhardin(_at_)wolfenet(_dot_)com
 pgpk -a finger://gonzo.wolfenet.com/jhardin    PGP key ID: 0x41EA94F5
 PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5  E9 BF C8 33 A7 A9 CE 76 
-----------------------------------------------------------------------
  Your mouse has moved. Windows NT must be restarted for the change
  to take effect. Reboot now?  [ OK ]
-----------------------------------------------------------------------
   88 days until Daylight Savings Time ends
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: procmail and commas, Rik Kabel
Next by Date:  Re: Help! Need to use procmail to fight dangerous security exploit, Geoff Mulligan
Previous by Thread:  How to get out of this list, toni
Next by Thread:  Setting up procmail---a baffling experience (for me), adavis
Indexes:  [Date] [Thread] [Top] [All Lists]