Date: Mon, 31 Mar 2003 12:26:56 -0700 From: Brett Glass <brett@lariat.org> To: "Jacques A. Vidrine" <nectar@FreeBSD.org> Cc: freebsd-security@FreeBSD.org Subject: Re: what was that? Message-ID: <4.3.2.7.2.20030331122450.031ace50@localhost> In-Reply-To: <20030331185646.GB40453@madman.celabo.org> References: <4.3.2.7.2.20030331102232.0327fa90@localhost> <3E887850.7010100@drweb.ru> <4.3.2.7.2.20030331102232.0327fa90@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
At 11:56 AM 3/31/2003, Jacques A. Vidrine wrote: >> It means that someone's trying to exploit a buffer overrun >> vulnerability. > >No, I don't think so. You have a right to disagree, of course. However, some MUAs HAVE been reported to have buffer overflow vulnerabilities that can be exploited via an excessively long message ID header. I have installed a filter that shortens them to prevent Outlook users from being nailed by this bug. --Brett
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.3.2.7.2.20030331122450.031ace50>