Vulnerability Database

308,379

Total vulnerabilities in the database

CVE-2003-0140

Buffer overflow in Mutt 1.4.0 and possibly earlier versions, 1.5.x up to 1.5.3, and other programs that use Mutt code such as Balsa before 2.0.10, allows a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a crafted folder.

Published: Mar 24, 2003
Updated: Nov 9, 2025
CVE: CVE-2003-0140
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
mutt / mutt	1.3.27	1.3.27.x
mutt / mutt	1.3.16	1.3.16.x
mutt / mutt	1.3.25	1.3.25.x
mutt / mutt	1.3.22	1.3.22.x
mutt / mutt	1.3.24	1.3.24.x
mutt / mutt	1.4.0	1.4.0.x
mutt / mutt	1.3.17	1.3.17.x
mutt / mutt	1.5.3	1.5.3.x
mutt / mutt	1.3.12	1.3.12.x

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime