CVE-2003-0297

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2003-0297

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2003-0297.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2003-0297

Published

2003-06-16T04:00:00Z

Modified

2025-02-13T17:01:24Z

Summary

[none]

Details

c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service (crash) and possibly execute arbitrary code via certain large (1) literal and (2) mailbox size values that cause either integer signedness errors or integer overflow errors.

References

Affected packages

Debian:11 / uw-imap

Package

Name: uw-imap
Purl: pkg:deb/debian/uw-imap?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7:2002c

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / uw-imap

Package

Name: uw-imap
Purl: pkg:deb/debian/uw-imap?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7:2002c

Ecosystem specific

{
    "urgency": "not yet assigned"
}