Vulnerabilities > CVE-2002-0198 - Buffer Overflow vulnerability in Paul L Daniels Inflex and Ripmime

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

paul-l-daniels

critical

NVD

Published: 2002-05-16

Updated: 2016-10-18

Summary

Buffer overflow in plDaniels ripMime 1.2.6 and earlier, as used in other programs such as xamime and inflex, allows remote attackers to execute arbitrary code via an attachment in a long filename.

Vulnerable Configurations

Part	Description	Count
Application	Paul_L_Daniels Paul L Daniels Inflex 1.0.10 Paul L Daniels Ripmime 1.2.0 Paul L Daniels Ripmime 1.2.1 Paul L Daniels Ripmime 1.2.2 Paul L Daniels Ripmime 1.2.3 Paul L Daniels Ripmime 1.2.4 Paul L Daniels Ripmime 1.2.5 Paul L Daniels Ripmime 1.2.6	8

References

http://marc.info/?l=bugtraq&m=101182636812381&w=2
http://pldaniels.org/ripmime/CHANGELOG
http://www.iss.net/security_center/static/7983.php
http://www.securityfocus.com/bid/3941