Vulnerability Description
The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Outlook Express | 6.00.2800.1106 |
| Mozilla | Mozilla | 1.3 |
| Mutt | Mutt | 1.4.1 |
| Qualcomm | Eudora | 5.2.1 |
| Stuart Parmenter | Balsa | 2.0.10 |
| Sylpheed | Sylpheed Email Client | 0.8.11 |
| University Of Washington | Pine | 4.53 |
| Ximian | Evolution | 1.2.4 |
References
FAQ
What is CVE-2003-0300?
CVE-2003-0300 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integ...
How severe is CVE-2003-0300?
CVE-2003-0300 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0300?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Outlook Express, Mozilla Mozilla, Mutt Mutt, Qualcomm Eudora, Stuart Parmenter Balsa.