PT-2006-4137 · Mutt+1 · Mutt+1

Takahashi Tamotsu

Publicado

2006-06-27

Atualizado

2018-10-18

CVE-2006-3242

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Mutt versions 1.4.2.1 and earlier

Description The issue is related to a stack-based buffer overflow in the browse get namespace function, which can be triggered by remote attackers sending long namespaces from an IMAP server. This can cause a denial of service, resulting in a crash, or potentially allow the execution of arbitrary code.

Recommendations For versions 1.4.2.1 and earlier, consider updating to a newer version that addresses this issue, as no specific fix is provided for these versions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2006-3242

DSA-1108

RHSA-2006:0577

RHSA-2006_0577

Produtos afetados

Mutt

Red Hat

PT-2006-4137 · Mutt+1 · Mutt+1

CVE-2006-3242

Identificadores relacionados

Produtos afetados

Referências · 36