dziury z 5 i 12 VIII 2002
Krzysiek Taraszka
dzimi at pld.org.pl
Sat Sep 7 14:07:27 CEST 2002
On Fri, 16 Aug 2002, Blues wrote:
> 39. Mpack
>
> Vendor: Carnegie Mellon University
>
> Two vulnerabilities were reported in the 'mpack' (aka
> 'munpack') file decoding utility. A remote user may be able to
> cause an e-mail program that uses mpack/munpack to decode
> MIME-based binary files to crash or to execute arbitrary code. A
> remote user may also be able to create certain files on the system.
>
> Impact: Denial of service via network
>
> Alert: http://securitytracker.com/alerts/2002/Aug/1004929.html
Done.
Krzysiek Taraszka (dzimi at pld.org.pl)
More information about the pld-devel-pl
mailing list