Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0297

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0297
Last Modified 05 Sep 2008 04:33:58
Published 16 Jun 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0297

Summary

c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service (crash) and possibly execute arbitrary code via certain large (1) literal and (2) mailbox size values that cause either integer signedness errors or integer overflow errors.

Vulnerable Systems

Application

  • University Of Washington C-client

  • University Of Washington Imap-2002b

  • University Of Washington Pine 4.53


References

REDHAT - RHSA-2005:114

REDHAT - RHSA-2005:015

FEDORA - FLSA:184074

BUGTRAQ - 20030514 Buffer overflows in multiple IMAP clients


Last Updated: 27 May 2016 10:37:51