CVE-2003-0140
mutt - buffer overflow
EPSS 2.2%
Description
Buffer overflow in Mutt 1.4.0 and possibly earlier versions, 1.5.x up to 1.5.3, and other programs that use Mutt code such as Balsa before 2.0.10, allows a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a crafted folder.
How to fix CVE-2003-0140
To remediate CVE-2003-0140, upgrade the affected package to a fixed version below.
- Debian/mutt—upgrade to 1.5.4-1 or later
- Debian/mutt—upgrade to 1.3.28-2.1 or later
Is CVE-2003-0140 being exploited?
Low — EPSS is 2.2%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 1.5.4-1
- from 0, < 1.3.28-2.1