Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!

TUCoPS :: Windows Net Apps :: becky~1.htm

Becky! 2.00.05 Buffer Overflow



    Becky! 2.00.05


    Ichinose  Sayo  found   following.   He   found  Buffer   Overflow
    vulnerabilities in Becky! Internet Mail 2.00.05.  Becky!  Internet
    Mail  is  popular  MUA  (Mail  User  Agent)  designed  for Windows
    operating systems.

    If  the  message  includes  over  65536  bytes  without  new  line
    characters, the buffer will  be overflowed.  Buffer  overflow also
    occurs when attempt  to reply or  forward to the  message included
    over 8188 bytes without new line characters.

    Successful exploitation of  this vulnerability could  allow remote
    attackers to execute arbitrary commands.  Tested Version:

        - Becky! Internet Mail ver 2.00.05
        - Becky! Internet Mail ver 2.00.03

    Web site  that shows  reproducing this  vulnerability is available


    Due to prompt response by  the author, the version 2.00.06,  which
    was fixed this problem, was published.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2015 AOH