CVE-2003-0299

Description

The IMAP Client, as used in mutt 1.4.1 and Balsa 2.0.10, allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large mailbox size values that cause either integer signedness errors or integer overflow errors.

Affected products

• mutt / mutt1.4.1 – 1.4.1
• stuart_parmenter / balsa2.0.10 – 2.0.10

References

• MAILING_LISThttp://marc.info/?l=bugtraq&m=105294024124163&w=2