CVE-2003-0297

Published: Jun 16, 2003Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service (crash) and possibly execute arbitrary code via certain large (1) literal and (2) mailbox size values that cause either integer signedness errors or integer overflow errors.

Affected (3)

Products: University Of Washington: C Client, Imap 2002b, Pine

University Of Washington

3 products

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
University Of Washington C Client	All versions
University Of Washington Imap 2002b	All versions
University Of Washington Pine	Version 4.53

References (8)

http://marc.info/?l=bugtraq&m=105294024124163&w=2

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2005-015.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2005-114.html

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/430302/100/0/threaded

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=105294024124163&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2005-015.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2005-114.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/430302/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.