Scientific Linux Security Update : imap on SL3.x i386/x86_64
Critical Nessus Plugin ID 60537
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA buffer overflow flaw was discovered in the dmail and tmail mail delivery utilities shipped with imap. If either of these utilities were used as a mail delivery agent, a remote attacker could potentially use this flaw to run arbitrary code as the targeted user by sending a specially crafted mail message to the victim.
SolutionUpdate the affected imap, imap-devel and / or imap-utils packages.