On Friday 06 April 2001 05:35, you wrote:
> line buffer of Outlook Express, versions 5.0.x.x and 5.50.x.x. This
> overflow is exploitable (in the latter version) with the same EML
> content spoofing being discussed in the previous thread.
Regarding buffer overflows: The KMail team offers a test mail folder that
tries to trigger several bugs and buffer overflows. From the web page:
-- quote ---
Mail client test file v0.5 (55kb): This mbox file triggers some bugs and
has very long field values to trigger buffer overflows. You may use this
to find possible security problems - not only in KMail, but in any mail
client that supports mbox folders. Just copy this file to ~/Mail/ and
start KMail.
-- /quote ---
You can get the file from http://kmail.kde.org/mail-client-QA.gz
Of course the file is not "complete", you cannot use it the prove the
security of a mail client. If you have additions (e.g. mails that trigger
bugs) send them to me and I will include them in the test file.
Regards
Daniel
--
Daniel Naber, Paul-Gerhardt-Str. 2, 33332 Guetersloh, Germany
