The write_one_header function in mutt 1.5.23 does not properly handle newline characters at the beginning of a header, which allows remote malicious users to cause a denial of service (crash) via a header with an empty body, which triggers a heap-based buffer overflow in the mutt_substrdup function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
suse linux enterprise desktop 12 |
||
suse suse linux enterprise server 12 |
||
mutt mutt 1.5.23 |
||
debian debian linux 7.0 |
||
mageia mageia 4.0 |