Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0297


Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0297
Last Modified 05 Sep 2008 04:33:58
Published 16 Jun 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service (crash) and possibly execute arbitrary code via certain large (1) literal and (2) mailbox size values that cause either integer signedness errors or integer overflow errors.

Vulnerable Systems


  • University Of Washington C-client

  • University Of Washington Imap-2002b

  • University Of Washington Pine 4.53


REDHAT - RHSA-2005:114

REDHAT - RHSA-2005:015

FEDORA - FLSA:184074

BUGTRAQ - 20030514 Buffer overflows in multiple IMAP clients

Last Updated: 27 May 2016 10:37:51