Buffer Overflows in several MIME headers affect a large number of electronic mail clients.
A variety of electronic mail clients (circa 1998) are vulnerable to buffer overflow attacks in the code that processes MIME headers. See the vendor statements referenced below for details specific to each mail client.
An intruder can crash vulnerable mail clients, or use them to execute arbitrary code with the privileges of the user reading the mail.
Fixing the problem requires modifying each email client with an appropriate patch from the vendor.
There are several things that can be done to mitigate the risk if a patch cannot be installed.
Sun Microsystems Inc.
The SCO Group (SCO Linux)
The SCO Group (SCO UnixWare)
This document was written by Shawn V Hernan.