CVE-2009-3838

Name of the Vulnerable Software and Affected Versions Pegasus Mail versions 4.41 through 4.51

Description A stack-based buffer overflow issue allows remote POP3 servers to cause a denial of service, potentially leading to application crashes, or possibly execute arbitrary code via a long error message.

Recommendations For versions 4.41 through 4.51, consider restricting access to POP3 servers until a patch is available. As a temporary workaround, avoid using long error messages in POP3 server responses to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.