PT-2003-1507 · Sylpheed · Sylpheed
Timo Sirainen
·
Published
2003-05-15
·
Updated
2016-10-18
·
CVE-2003-0300
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions:
Sylpheed version 0.8.11
Description:
The issue allows remote malicious IMAP servers to cause a denial of service, resulting in a crash, by exploiting certain large literal size values. This can lead to either integer signedness errors or integer overflow errors.
Recommendations:
For version 0.8.11, update to a newer version that contains a fix for this issue to prevent remote malicious IMAP servers from causing a denial of service.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Sylpheed