CVE-2003-0300

Description

The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors.

Affected products

• Microsoft / outlook_express6.00.2800.1106 – 6.00.2800.1106
• Mozilla / mozilla1.3 – 1.3
• Mozilla / mozilla1.4 – 1.4
• mutt / mutt1.4.1 – 1.4.1
• qualcomm / eudora5.2.1 – 5.2.1
• stuart_parmenter / balsa2.0.10 – 2.0.10
• sylpheed / sylpheed_email_client0.8.11 – 0.8.11
• university_of_washington / pine4.53 – 4.53
• ximian / evolution1.2.4 – 1.2.4

References

• MAILING_LISThttp://marc.info/?l=bugtraq&m=105294024124163&w=2