It looks like the version of imapd shipping with Cobalts by default is remotely buffer overflowable. Theres bits and bobs trickling through from bugtraq, but at the moment it looks like the pine team fixed it and hadn't told anybody (sigh). At this second I'm not aware of any public exploits for it. Regards, Gossi. _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
- Re: [cobalt-security] IMAPd on Cobalts Gossi The Dog
- Re: [cobalt-security] IMAPd on Cobalts Mike Fritsch
