DEBIAN-CVE-2003-0297

c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service crash and possibly execute arbitrary code via certain large 1 literal and 2 mailbox size values that cause either integer signedness errors or integer overflow errors...

Buffer overflows in multiple IMAP clients

There's two common vulnerabilities in IMAP clients written with C and C++: 1. Handling huge literal sizes. Many clients do mallocliteralsize+1 and then read the literal into it. Problem is that if literalsize is UINTMAX-1, the +1 overflows it into malloc0 but server is still allowed to write...