COMMAND

    Becky! Internet Mail

SYSTEMS AFFECTED

    Becky! Internet Mail ver 1.26.03

PROBLEM

    Nobuo  Miwa  found  following.   There  were  some Buffer overflow
    vulneravilities in  Beckey! Internet  Mail software.   The problem
    is Content-Type:  header.   Becky! copies  Content-Type: value  to
    Becky-char:  header when you reply or forward it to someone.   But
    if  Content-Type:  header's  value  was  over 4500 characters, its
    buffer is overflowed.

        Content-Type: text/plain; charset=aaaaaaa...

    Its malicious header won't be noticed by users.

SOLUTION

    Nobuo contacted author and got fix versions.  Fixed version:

        - Becky! Internet Mail ver 1.26.04 (for "Reply" bug)
        - Becky! Internet Mail ver 1.26.05 (for "Forward" bug)