Metamail 2.7 - Multiple Buffer Overflow/Format String Handling Vulnerabilities



source: http://www.securityfocus.com/bid/9692/info


Metamail has been reported prone to multiple vulnerabilities that may provide for arbitrary code execution. Two buffer overflow vulnerabilities have been reported to affect Metamail. Additionally, two format string-handling vulnerabilities have been reported. These issues may also be exploited by a remote attacker to execute arbitrary code. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/23728-1.splitmail

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/23728-2.tgz

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/23728-3

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/23728-4

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/23728-5