CVE-2003-0296
EPSS 0.95%
Description
The IMAP Client for Evolution 1.2.4 allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large literal size values that cause either integer signedness errors or integer overflow errors.
How to fix CVE-2003-0296
To remediate CVE-2003-0296, upgrade the affected package to a fixed version below.
- Debian/evolution—upgrade to 1.3.2 or later
Is CVE-2003-0296 being exploited?
Low — EPSS is 1.0%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.3.2