Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2003-0140HistoryMar 24, 2003 - 5:00 a.m.
CVE-2003-0140
2003-03-2405:00:00
Debian Security Bug Tracker
security-tracker.debian.org
7
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.022 Low
EPSS
Percentile
89.4%
Buffer overflow in Mutt 1.4.0 and possibly earlier versions, 1.5.x up to 1.5.3, and other programs that use Mutt code such as Balsa before 2.0.10, allows a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a crafted folder.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | mutt | < 1.5.4-1 | mutt_1.5.4-1_all.deb |
| Debian | 11 | all | mutt | < 1.5.4-1 | mutt_1.5.4-1_all.deb |
| Debian | 10 | all | mutt | < 1.5.4-1 | mutt_1.5.4-1_all.deb |
| Debian | 999 | all | mutt | < 1.5.4-1 | mutt_1.5.4-1_all.deb |
| Debian | 13 | all | mutt | < 1.5.4-1 | mutt_1.5.4-1_all.deb |
Related
debian
debian
[SECURITY] [DSA 268-1] New mutt packages fix arbitrary code execution
2003-03-25 15:04:17
[SECURITY] [DSA 268-1] New mutt packages fix arbitrary code execution
2003-03-25 15:04:17
osv
osv
mutt - buffer overflow
2003-03-25 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : mutt (MDKSA-2003:041-1)
2004-07-31 00:00:00
SUSE-SA:2003:020: mutt
2004-07-25 00:00:00
Debian DSA-268-1 : mutt - buffer overflow
2004-09-29 00:00:00
cve
cve
CVE-2003-0140
2003-03-24 05:00:00
CVE-2003-0167
2003-04-02 05:00:00
suse
suse
remote system compromise in mutt
2003-03-24 13:56:11
cvelist
cvelist
CVE-2003-0140
2003-03-21 05:00:00
CVE-2003-0167
2003-03-29 05:00:00
openvas
openvas
Debian Security Advisory DSA 268-1 (mutt)
2008-01-17 00:00:00
Debian Security Advisory DSA 268-1 (mutt)
2008-01-17 00:00:00
nvd
nvd
CVE-2003-0140
2003-03-24 05:00:00
CVE-2003-0167
2003-04-02 05:00:00
redhat
redhat
(RHSA-2003:111) balsa security update
2003-05-22 00:00:00
debiancve
debiancve
CVE-2003-0167
2003-04-02 05:00:00
securityvulns
securityvulns
[CLA-2003:630] Conectiva Security Announcement - balsa
2003-04-23 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.022 Low
EPSS
Percentile
89.4%
Related for DEBIANCVE:CVE-2003-0140