Multiple off-by-one buffer overflows in the IMAP capability for Mutt 1.3.28 and earlier, and Balsa 1.2.4 and earlier, allow a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a specially crafted mail folder, a different vulnerability than CVE-2003-0140.
References
Link | Resource |
---|---|
http://www.debian.org/security/2003/dsa-274 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/7229 | Patch Vendor Advisory |
http://www.debian.org/security/2003/dsa-300 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2003-04-01 21:00
Updated : 2008-09-05 13:33
NVD link : CVE-2003-0167
Mitre link : CVE-2003-0167
JSON object : View
CWE
Products Affected
mutt
- mutt