PT-2007-4000 · Mutt+1 · Mutt+1

Lubomir Kundrak

Published

2007-05-15

Updated

2017-10-11

CVE-2007-2683

CVSS v2.0

3.5

Low

Vector

AV:L/AC:H/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Mutt version 1.4.2

Description The issue is related to a buffer overflow that might allow local users to execute arbitrary code. This occurs when the GECOS field contains "&" characters, triggering the overflow during alias expansion.

Recommendations For Mutt version 1.4.2, update to a version that fixes this issue to prevent potential code execution.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-2683

RHSA-2007:0386

RHSA-2007_0386

Affected Products

Mutt

Red Hat

PT-2007-4000 · Mutt+1 · Mutt+1

CVE-2007-2683

Related Identifiers

Affected Products

References · 25