Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0467

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2014-0467
Last Modified 07 Aug 2015 01:44:10
Published 14 Mar 2014 11:55:05
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-0467

Summary

Buffer overflow in copy.c in Mutt before 1.5.23 allows remote attackers to cause a denial of service (crash) via a crafted RFC2047 header line, related to address expansion.

Vulnerable Systems

Operating System

  • Novell Opensuse 11.4

  • Novell Opensuse 12.3

  • Novell Opensuse 13.1

Application

  • Mutt 1.5

  • Mutt 1.5.1

  • Mutt 1.5.10

  • Mutt 1.5.11

  • Mutt 1.5.12

  • Mutt 1.5.13

  • Mutt 1.5.14

  • Mutt 1.5.15

  • Mutt 1.5.16

  • Mutt 1.5.17

  • Mutt 1.5.18

  • Mutt 1.5.19

  • Mutt 1.5.2

  • Mutt 1.5.20

  • Mutt 1.5.21

  • Mutt 1.5.22

  • Mutt 1.5.3

  • Mutt 1.5.4

  • Mutt 1.5.5

  • Mutt 1.5.6

  • Mutt 1.5.7

  • Mutt 1.5.8

  • Mutt 1.5.9


References

CONFIRM - http://www.mutt.org/doc/devel/ChangeLog

DEBIAN - DSA-2874

UBUNTU - USN-2147-1

REDHAT - RHSA-2014:0304

SUSE - openSUSE-SU-2014:0436

SUSE - openSUSE-SU-2014:0434

SUSE - SUSE-SU-2014:0471

SECTRACK - 1029919


Last Updated: 27 May 2016 11:09:28