1. Home
  2. CVE Database
  3. CVE-2003-0299
HIGH · 7.5

CVE-2003-0299

The IMAP Client, as used in mutt 1.4.1 and Balsa 2.0.10, allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large mailbox size values tha...

Vulnerability Description

The IMAP Client, as used in mutt 1.4.1 and Balsa 2.0.10, allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large mailbox size values that cause either integer signedness errors or integer overflow errors.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
MuttMutt1.4.1
Stuart ParmenterBalsa2.0.10

References

FAQ

What is CVE-2003-0299?

CVE-2003-0299 is a vulnerability with a CVSS score of 7.5 (HIGH). The IMAP Client, as used in mutt 1.4.1 and Balsa 2.0.10, allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large mailbox size values tha...

How severe is CVE-2003-0299?

CVE-2003-0299 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2003-0299?

Check the references section above for vendor advisories and patch information. Affected products include: Mutt Mutt, Stuart Parmenter Balsa.