CVE-2003-0167

Published: Apr 2, 2003Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple off-by-one buffer overflows in the IMAP capability for Mutt 1.3.28 and earlier, and Balsa 1.2.4 and earlier, allow a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a specially crafted mail folder, a different vulnerability than CVE-2003-0140.

Affected (9)

Products: Mutt: Mutt

Mutt

1 product

Mutt

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Mutt Mutt	Version 1.3.12.1
Mutt Mutt	Version 1.3.12
Mutt Mutt	Version 1.3.16
Mutt Mutt	Version 1.3.17
Mutt Mutt	Version 1.3.22
Mutt Mutt	Version 1.3.24
Mutt Mutt	Version 1.3.25
Mutt Mutt	Version 1.3.27
Mutt Mutt	Version 1.3.28