CVE-2003-0298

Name of the Vulnerable Software and Affected Versions: IMAP Client for Mozilla versions 1.3 through 1.4a

Description: The issue allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large literal and possibly mailbox size values that cause either integer signedness errors or integer overflow errors.

Recommendations: For versions 1.3 through 1.4a, consider restricting access to untrusted IMAP servers to minimize the risk of exploitation. As a temporary workaround, avoid using large literal and mailbox size values in IMAP communications until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.