VULHUB ™

Elm is a mail user agent designed for use with UNIX based operating systems. The 'elm' program contains a potential buffer overflow vulnerability in its handling of 'Message-ID' fields in e-mail headers. The condition may occur if the field value is of an excessive length. It may be possible for a remote attacker to exploit this to cause neighbouring memory to be overwritten with arbitrary data. This may lead to the execution of arbitrary code on the system of the user running elm.

Elm is a mail user agent designed for use with UNIX based operating systems. The 'elm' program contains a potential buffer overflow vulnerability in its handling of 'Message-ID' fields in e-mail headers. The condition may occur if the field value is of an excessive length. It may be possible for a remote attacker to exploit this to cause neighbouring memory to be overwritten with arbitrary data. This may lead to the execution of arbitrary code on the system of the user running elm.