CVE-2001-0819

Description

A buffer overflow in Linux fetchmail before 5.8.6 allows remote attackers to execute arbitrary code via a large 'To:' field in an email header.

Link	Tags
http://www.novell.com/linux/security/advisories/2001_026_fetchmail_txt.html	vendor advisory
http://www.redhat.com/support/errata/RHSA-2001-103.html	vendor advisory
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:43.fetchmail.asc	vendor advisory
http://www.securityfocus.com/bid/2877	vdb entry patch vendor advisory
http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-025-01	vendor advisory
http://www.linuxsecurity.com/advisories/other_advisory-1451.html	patch vendor advisory
http://www.caldera.com/support/security/advisories/CSSA-2001-022.1.txt	vendor advisory
http://www.debian.org/security/2001/dsa-060	patch vendor advisory
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-063.php3?dis=7.1	vendor advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6704	vdb entry
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000403	vendor advisory

What is the severity of CVE-2001-0819?: CVE-2001-0819 has been scored as a high severity vulnerability.
How to fix CVE-2001-0819?: To fix CVE-2001-0819, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2001-0819 being actively exploited in the wild?: It is possible that CVE-2001-0819 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~7% probability that this vulnerability will be exploited by malicious actors in the next 30 days.