Mutt Mutt_Gecos_Name Function Local Buffer Overflow Vulnerability

Bugtraq ID:	24192
Class:	Boundary Condition Error
CVE:	CVE-2007-2683
Remote:	No
Local:	Yes
Published:	May 28 2007 12:00AM
Updated:	Aug 10 2007 06:24PM
Credit:	raylai reported this issue.
Vulnerable:	Trustix Secure Linux 3.0.5 Trustix Secure Linux 3.0 Trustix Secure Linux 2.2 SGI ProPack 3.0 SP6 rPath rPath Linux 1 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux ES 3 RedHat Enterprise Linux Desktop 5 client RedHat Enterprise Linux AS 4 RedHat Enterprise Linux AS 3 RedHat Enterprise Linux Desktop version 4 RedHat Enterprise Linux 5 server RedHat Desktop 4.0 RedHat Desktop 3.0 Mutt Mutt 1.4.2 + Netwosix Netwosix Linux 1.0 Mutt Mutt 1.4.2 Mutt Mutt 1.4.1 + Slackware Linux 9.1 + Slackware Linux 9.0 + Slackware Linux 8.1 + Trustix Secure Linux 2.0 Mutt Mutt 1.4 .0 + MandrakeSoft Corporate Server 2.1 x86_64 + MandrakeSoft Corporate Server 2.1 + MandrakeSoft Linux Mandrake 9.2 amd64 + MandrakeSoft Linux Mandrake 9.2 + MandrakeSoft Linux Mandrake 9.1 ppc + MandrakeSoft Linux Mandrake 9.1 + MandrakeSoft Linux Mandrake 9.0 + Netwosix Netwosix Linux 1.0 + OpenPKG OpenPKG 1.2 + OpenPKG OpenPKG 1.1 + OpenPKG OpenPKG Current + RedHat Linux 8.0 i686 + RedHat Linux 8.0 i386 + RedHat Linux 8.0 + S.u.S.E. Linux 8.1 Mutt Mutt 1.4.2.2 MandrakeSoft Linux Mandrake 2007.1 x86_64 MandrakeSoft Linux Mandrake 2007.1 MandrakeSoft Linux Mandrake 2007.0 x86_64 MandrakeSoft Linux Mandrake 2007.0 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0

Not Vulnerable:	Mutt Mutt 1.4.2.3