Elm 'Expires' Header Overflow
High Nessus Network Monitor Plugin ID 3174
SynopsisThe remote host is vulnerable to a buffer overflow.
DescriptionThe remote host is running Elm, an email client. This version of Elm is vulnerable to a buffer overflow via the 'Expires' header parameter. An attacker exploiting this flaw would send a specially formed email with a very long 'Expires' value. Successful exploitation would result in arbitrary code being executed.
SolutionUpgrade or patch according to vendor recommendations.