---

Computerworld: Linux/Unix E-mail Flaw Leaves Systems Open to Attack

[ Thanks to Jason
Greenwood
for this link. ]

“Two serious security flaws have turned up in software widely
distributed with Linux and Unix. The bugs affect Electronic Mail
for Unix (Elm), a venerable e-mail client still used by many Linux
and Unix systems administrators, and Mplayer, a cross-platform
movie player that is one of the most popular of its kind on
Linux.

“The Elm flaw involves a boundary error when the client reads an
e-mail’s ‘Expires’ header. A specially crafted e-mail could exploit
the bug to cause a buffer overflow and execute malicious code on a
system, according to security researchers…”


Complete Story