High

CVE-2003-0140 - Unspecified vulnerability in Mutt

Publication: 2003-03-24
Summary

Buffer overflow in Mutt 1.4.0 and possibly earlier versions, 1.5.x up to 1.5.3, and other programs that use Mutt code such as Balsa before 2.0.10, allows a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a crafted folder.

Risk level (CVSS 7.5)

High

7.5

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

  • Mutt Mutt 1.3.12
  • Mutt Mutt 1.3.16
  • Mutt Mutt 1.3.17
  • Mutt Mutt 1.3.22
  • Mutt Mutt 1.3.24
  • Mutt Mutt 1.3.25
  • Mutt Mutt 1.3.27
  • Mutt Mutt 1.4.0
  • Mutt Mutt 1.5.3