SGI MediaMail Memory Corruption Vulnerability

MediaMail is a mail application distributed with SGI IRIX.

It has been reported by SGI that certain command line argument passed to MediaMail may result in core dumps. These core dumps are due to memory corruption, and are likely exploitable. The MediaMail and MediaMail Pro applications are typically installed setgid mail. If attackers successfuly exploit MediaMail, they may gain these privileges.


Privacy Statement
Copyright 2010, SecurityFocus