perdition: arbitrary code execution via crafted IMAP tag
| Package(s): | perdition | CVE #(s): | CVE-2007-5740 | ||||
| Created: | November 6, 2007 | Updated: | November 7, 2007 | ||||
| Description: | From the Debian advisory: Bernhard Mueller of SEC Consult has discovered a format string vulnerability in perdition, an IMAP proxy. This vulnerability could allow an unauthenticated remote user to run arbitrary code on the perdition server by providing a specially formatted IMAP tag. | ||||||
| Alerts: |
| ||||||