Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0167

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0167
Last Modified 05 Sep 2008 04:33:39
Published 02 Apr 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0167

Summary

Multiple off-by-one buffer overflows in the IMAP capability for Mutt 1.3.28 and earlier, and Balsa 1.2.4 and earlier, allow a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a specially crafted mail folder, a different vulnerability than CVE-2003-0140.

Vulnerable Systems

Application

  • Mutt 1.3.12

  • Mutt 1.3.12.1

  • Mutt 1.3.16

  • Mutt 1.3.17

  • Mutt 1.3.22

  • Mutt 1.3.24

  • Mutt 1.3.25

  • Mutt 1.3.27

  • Mutt 1.3.28


References

BID - 7229

DEBIAN - DSA-274

DEBIAN - DSA-300


Last Updated: 27 May 2016 10:37:48