VYPR
Unrated severityNVD Advisory· Published Jun 16, 2003· Updated Jun 16, 2026

CVE-2003-0299

CVE-2003-0299

Description

The IMAP Client, as used in mutt 1.4.1 and Balsa 2.0.10, allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large mailbox size values that cause either integer signedness errors or integer overflow errors.

Affected products

4
  • Mutt/Mutt2 versions
    cpe:2.3:a:mutt:mutt:1.4.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:mutt:mutt:1.4.1:*:*:*:*:*:*:*
    • (no CPE)range: =1.4.1
  • cpe:2.3:a:stuart_parmenter:balsa:2.0.10:*:*:*:*:*:*:*
  • Balsa/Balsallm-create
    Range: =2.0.10

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.