CVE-2005-0892

Name of the Vulnerable Software and Affected Versions smail version 3.2.0.120

Description The issue concerns multiple vulnerabilities in the smail package of the Debian GNU/Linux operating system, which can be exploited remotely to compromise the confidentiality, integrity, and availability of protected information. A buffer overflow vulnerability in smail 3.2.0.120 allows remote attackers or local users to execute arbitrary code via a long string in the MAIL FROM command and possibly other SMTP commands.

Recommendations For smail version 3.2.0.120, consider restricting access to the MAIL FROM command and other potentially vulnerable SMTP commands until a patch is available. As a temporary workaround, limiting the length of input strings in these commands may help mitigate the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.