>> Pegasus Mail Remote Buffer Overflow and Off-by-One Vulnerabilities
Title : Pegasus Mail Remote Buffer Overflow and Off-by-One Vulnerabilities VUPEN ID : VUPEN/ADV-2005-3004 CVE ID : CVE-2005-4444 - CVE-2005-4445
Rated as : Moderate Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2005-12-20
Technical Description
Two vulnerabilities were identified in Pegasus Mail, which could be exploited by remote attackers to execute arbitrary commands.
The first issue is due to a stack overflow error when processing overly long POP3 replies, which could be exploited by attackers to compromise a vulnerable system by tricking a user into connecting to a malicious POP3 server.
The second vulnerability is due to an off-by-one error when displaying the RFC2822 message headers, which could be exploited by attackers to execute arbitrary commands (e.g. on Windows XP) by tricking a user into viewing the headers of a malicious email via the "Message headers..." menu item in the context menu of the email message.
