Published: 16/06/2003 Updated: 19/10/2018
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service (crash) and possibly execute arbitrary code via certain large (1) literal and (2) mailbox size values that cause either integer signedness errors or integer overflow errors.

Vendor Advisories

Synopsis pine security update Type/Severity Security Advisory: Low Topic An updated Pine package is now available for Red Hat Enterprise Linux 21to fix a denial of service attack Description Pine is an email user agentThe c-client IMAP client library, as used in Pine 444 contains an int ...