• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

KMail Client Denial Of Service Vulnerability

KMail is a graphical mail client for KDE (K Desktop Environment). KDE is a graphical desktop environment for Linux and Unix variants.

It has been reported that KMail crashes when it attempts to open an e-mail with a message body that is approximately 55kb in length.

A remote attacker may potentially exploit this issue to cause a denial of service to a user of the e-mail client.

This issue has been reported for KMail 1.2 running under KDE 2.1.1. Other versions and environments may be affected by this vulnerability. This issue does not appear to affect KMail 1.3.1 running under KDE 2.2.