CVE-2003-0300

5 documents4 sources

Severity

5.0MEDIUM

EPSS

0.8%

top 25.22%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Outlook Express Mozilla Mozilla Mutt Mutt +5 more

Timeline

PublishedJun 16

Latest updateApr 29

Description

The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages8 packages

▶NVDsylpheed/sylpheed_email_client0.8.11

▶NVDmutt/mutt1.4.1

▶NVDmozilla/mozilla1.3, 1.4+1

▶NVDqualcomm/eudora5.2.1

▶NVDximian/evolution1.2.4

🔴Vulnerability Details

GHSA

GHSA-65hx-gppf-cfhx: The IMAP Client for Sylpheed 0↗2022-04-29

▶

CVEList

CVE-2003-0300: The IMAP Client for Sylpheed 0↗2003-05-15

▶

💥Exploits & PoCs

Exploit-DB

Ximian Evolution 1.x - MIME image/* Content-Type Data Inclusion↗2003-03-19

▶

Exploit-DB

Ximian Evolution 1.x - UUEncoding Denial of Service↗2003-03-17

▶