CVE-2002-0198

Description

Buffer overflow in plDaniels ripMime 1.2.6 and earlier, as used in other programs such as xamime and inflex, allows remote attackers to execute arbitrary code via an attachment in a long filename.

Affected products

• paul_l_daniels / inflex1.0.10 – 1.0.10
• paul_l_daniels / ripmime1.2.0 – 1.2.0
• paul_l_daniels / ripmime1.2.1 – 1.2.1
• paul_l_daniels / ripmime1.2.2 – 1.2.2
• paul_l_daniels / ripmime1.2.3 – 1.2.3
• paul_l_daniels / ripmime1.2.4 – 1.2.4
• paul_l_daniels / ripmime1.2.5 – 1.2.5
• paul_l_daniels / ripmime1.2.6 – 1.2.6

References

• MAILING_LISThttp://marc.info/?l=bugtraq&m=101182636812381&w=2
• MISChttp://www.iss.net/security_center/static/7983.php
• MISChttp://pldaniels.org/ripmime/CHANGELOG
• MISChttp://www.securityfocus.com/bid/3941