Fetchmail POP3 Client Buffer Overflow Vulnerability

Fetchmail POP3 Client Buffer Overflow Vulnerability

A proof-of-concept exploit has been made available by bannedit@frontiernet.net. Please see the message reference (Fetchmail 6.2.5 exploit for Bugtraq ID: 14349) for instructions on patching fakepop version 7 to return data sufficient to exploit this vulnerability.

A series of Mac OS X v10.4.7 proof-of-concept exploits have been released by kf (kf_lists[at]digitalmunition[dot]com).

/data/vulnerabilities/exploits/osx_fetchmail_priv_esc.txt
/data/vulnerabilities/exploits/osx_fetchmail_priv_esc_ppc.txt
/data/vulnerabilities/exploits/osx_fetchmail_priv_esc_x86.txt