Detections
Analytics

CVE-2003-0297

critical

Description

c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service (crash) and possibly execute arbitrary code via certain large (1) literal and (2) mailbox size values that cause either integer signedness errors or integer overflow errors.

References

http://www.securityfocus.com/archive/1/430302/100/0/threaded

http://www.redhat.com/support/errata/RHSA-2005-114.html

http://www.redhat.com/support/errata/RHSA-2005-015.html

http://marc.info/?l=bugtraq&m=105294024124163&w=2

Details

Source: Mitre, NVD

Published: 2003-06-16

Updated: 2018-10-19

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical