CVE-2012-5468

EPSS 6.1%

bogofilter - heap-based buffer overflow

Published: 12/18/2012Modified: 4/28/2026

Description

Heap-based buffer overflow in iconvert.c in the bogolexer component in Bogofilter before 1.2.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an email containing a base64 string that is decoded to incomplete multibyte characters.

Affected packages (2)

Debian/bogofilterfrom 0, < 1.2.2+dfsg1-2
Debian/bogofilterfrom 0, < 1.2.2-2+squeeze1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-5468