icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Pegasus Mail <= 3.11 Binary Message Handling Remote Overflow

High

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is running Pegasus 3.11 mail client which contains a vulnerability, where if more than approximately 90KB of binary data is placed in the body of a message, an overflow will occur, causing the program to crash and/or allowing for the execution of arbitrary code.

Solution

Upgrade to the latest version of Pegasus.