Vulnerabilities > Mutt > Mutt > 1.3.25

DATE CVE VULNERABILITY TITLE RISK
2006-10-16 CVE-2006-5298 Unspecified vulnerability in Mutt
The mutt_adv_mktemp function in the Mutt mail client 1.5.12 and earlier does not properly verify that temporary files have been created with restricted permissions, which might allow local users to create files with weak permissions via a race condition between the mktemp and safe_fopen function calls.
local
high complexity
mutt
1.2
2006-10-16 CVE-2006-5297 Multiple vulnerability in Mutt Insecure Temporary File Creation
Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.
local
high complexity
mutt
1.2
2004-03-03 CVE-2004-0078 Remote Buffer Overflow vulnerability in Mutt Menu Drawing
Buffer overflow in the index menu code (menu_pad_string of menu.c) for Mutt 1.4.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain mail messages.
network
low complexity
mutt
7.5
2003-04-02 CVE-2003-0167 Remote Folder Buffer Overflow vulnerability in Mutt IMAP
Multiple off-by-one buffer overflows in the IMAP capability for Mutt 1.3.28 and earlier, and Balsa 1.2.4 and earlier, allow a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a specially crafted mail folder, a different vulnerability than CVE-2003-0140.
network
low complexity
mutt
7.5
2003-03-24 CVE-2003-0140 Remote Folder Buffer Overrun vulnerability in Mutt UTF-7 Internationalized
Buffer overflow in Mutt 1.4.0 and possibly earlier versions, 1.5.x up to 1.5.3, and other programs that use Mutt code such as Balsa before 2.0.10, allows a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a crafted folder.
network
low complexity
mutt
7.5