CVE-2003-0167 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2003-0167

Multiple off-by-one buffer overflows in the IMAP capability for Mutt 1.3.28 and earlier, and Balsa 1.2.4 and earlier, allow a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a specially crafted mail folder, a different vulnerability than CVE-2003-0140.

Published: Apr 2, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-0167
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
mutt / mutt	1.3.12.1	1.3.12.1.x
mutt / mutt	1.3.27	1.3.27.x
mutt / mutt	1.3.16	1.3.16.x
mutt / mutt	1.3.25	1.3.25.x
mutt / mutt	1.3.22	1.3.22.x
mutt / mutt	1.3.28	1.3.28.x
mutt / mutt	1.3.24	1.3.24.x
mutt / mutt	1.3.17	1.3.17.x
mutt / mutt	1.3.12	1.3.12.x