Buffer overflow in the index menu code (menu_pad_string of menu.c) for Mutt 1.4.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain mail messages.Referenceshttp://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.405053http://bugs.debian.org/126336http://marc.info/?l=bugtraq&m=107696262905039&w=2http://www.redhat.com/support/errata/RHSA-2004-051.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A811https://exchange.xforce.ibmcloud.com/vulnerabilities/15134https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A838http://www.securityfocus.com/bid/9641http://marc.info/?l=bugtraq&m=107651677817933&w=2http://www.redhat.com/support/errata/RHSA-2004-050.htmlhttp://marc.info/?l=bugtraq&m=107884956930903&w=2http://www.osvdb.org/3918http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:010ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2004-013.0.txt
