Bugtraq mailing list archives

Update to DST2K0011: DoS & BufferOverrun in CMail v2.4.7 WebMail

From: securityteam () DELPHISPLC COM (Security Team)
Date: Sat, 10 Jun 2000 17:39:47 +0100


All,

ComputaLynx have released a patch to address the above advisory from DCIST
(Delphis Consulting Internet Security Team). Users of the Web mail feature
of CMAIL are advised to upgrade to v2.4.8.

Vendor Homepage:
http://www.computalynx.net/

Vendor Link:
http://www.computalynx.net/news/Jun2000/news0806200001.html

We would like to take this opportunity to thank ComutaLynx for there rapid
response on this issue.

Rgds

DCIST
-----
Security Team
Delphis Consulting Plc
+44 (020) 79160200
http://www.delphisplc.com/thinking/whitepapers/

Current thread:

Yet another heap overflow in wu-ftpd and so on... Michal Zalewski (Jun 07)
- Re: Yet another heap overflow in wu-ftpd and so on... portal (Jun 08)
- Mailstudio2000 CGI Vulnerabilities [S0ftPj.4] fusys () ITAPAC NET (Jun 09)
  - Re: Mailstudio2000 CGI Vulnerabilities [S0ftPj.4] Vanja Hrustic (Jun 10)
    - Re: Mailstudio2000 CGI Vulnerabilities [S0ftPj.4] Fyodor (Jun 10)
  - Update to DST2K0011: DoS & BufferOverrun in CMail v2.4.7 WebMail Security Team (Jun 10)
- Security Update: flaws in the SSL transaction handling of Netscape Technical Support (Jun 09)