Slackware Advisory SSA:2004-049-02 Metamail Security Update Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2004-049-02.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2004-049-02

Insight

Metamail is a set of utilities for processing MIME mail. New metamail packages are available for Slackware 8.1, 9.0, 9.1, and -current. These fix two format string bugs and two buffer overflows which could lead to unauthorized code execution. Thanks to Ulf Härnhammar for discovering these problems and providing a patch. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0104 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0105

Severity

Classification

CVE CVE-2004-0104, CVE-2004-0105

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Slackware Advisory SSA:2005-192-01 PHP
Slackware Advisory SSA:2003-259-03 WU-FTPD Security Advisory
Slackware Advisory SSA:2004-119-01 kernel security updates
Slackware Advisory SSA:2006-272-01 openssl
Slackware Advisory SSA:2003-253-01 security issues in pine

Slackware Advisory SSA:2004-049-02 metamail security update

Take action and discover your vulnerabilities