CVE-2003-0300

Summary

CVE	CVE-2003-0300
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2003-06-16 04:00:00 UTC
Updated	2016-10-18 02:32:00 UTC
Description	The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors.

Risk And Classification

Problem Types: NVD-CWE-Other

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Microsoft	Outlook Express	6.00.2800.1106	All	All	All
Application	Microsoft	Outlook Express	6.00.2800.1106	All	All	All
Application	Mozilla	Mozilla	1.3	All	All	All
Application	Mozilla	Mozilla	1.4	alpha	All	All
Application	Mozilla	Mozilla	1.3	All	All	All
Application	Mozilla	Mozilla	1.4	alpha	All	All
Application	Mutt	Mutt	1.4.1	All	All	All
Application	Mutt	Mutt	1.4.1	All	All	All
Application	Qualcomm	Eudora	5.2.1	All	All	All
Application	Qualcomm	Eudora	5.2.1	All	All	All
Application	Stuart Parmenter	Balsa	2.0.10	All	All	All
Application	Stuart Parmenter	Balsa	2.0.10	All	All	All
Application	Sylpheed	Sylpheed Email Client	0.8.11	All	All	All
Application	Sylpheed	Sylpheed Email Client	0.8.11	All	All	All
Application	University Of Washington	Pine	4.53	All	All	All
Application	University Of Washington	Pine	4.53	All	All	All
Application	Ximian	Evolution	1.2.4	All	All	All
Application	Ximian	Evolution	1.2.4	All	All	All

References

Reference	Source	Link	Tags
'Buffer overflows in multiple IMAP clients' - MARC	BUGTRAQ	marc.info
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.