Vulnerability Name: | CVE-2004-0078 (CCN-15134) | ||||||||||||||||||||||||
Assigned: | 2004-02-11 | ||||||||||||||||||||||||
Published: | 2004-02-11 | ||||||||||||||||||||||||
Updated: | 2017-10-10 | ||||||||||||||||||||||||
Summary: | Buffer overflow in the index menu code (menu_pad_string of menu.c) for Mutt 1.4.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain mail messages. | ||||||||||||||||||||||||
CVSS v3 Severity: | 7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||||||||||||||||||
CVSS v2 Severity: | 7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
| ||||||||||||||||||||||||
Vulnerability Type: | CWE-Other | ||||||||||||||||||||||||
Vulnerability Consequences: | Gain Access | ||||||||||||||||||||||||
References: | Source: CALDERA Type: UNKNOWN CSSA-2004-013.0 Source: CCN Type: BugTraq Mailing List, Wed Feb 11 2004 - 08:21:14 CST Mutt-1.4.2 fixes buffer overflow. Source: CONFIRM Type: UNKNOWN http://bugs.debian.org/126336 Source: CCN Type: Bugzilla Red Hat Bug #: 114452 CAN-2004-0078 Mutt can be remotely crashed Source: MITRE Type: CNA CVE-2004-0078 Source: BUGTRAQ Type: UNKNOWN 20040211 Mutt-1.4.2 fixes buffer overflow. Source: BUGTRAQ Type: UNKNOWN 20040215 LNSA-#2004-0001: mutt remote crash Source: BUGTRAQ Type: UNKNOWN 20040309 [OpenPKG-SA-2004.005] OpenPKG Security Advisory (mutt) Source: CCN Type: RHSA-2004-050 mutt security update Source: CCN Type: RHSA-2004-051 Updated mutt packages fix remotely-triggerable crash Source: CCN Type: Trustix Secure Linux Security Advisory #2004-0006 mutt Source: CCN Type: SCO Security Advisory CSSA-2004-013.0 OpenLinux: mutt remote buffer overflow Source: MANDRAKE Type: UNKNOWN MDKSA-2004:010 Source: CCN Type: Mutt Web site The Mutt E-Mail Client Source: CCN Type: OpenPKG-SA-2004.005 Mutt Source: OSVDB Type: UNKNOWN 3918 Source: CCN Type: OSVDB ID: 3918 Mutt menu.c menu_pad_string Function Index Menu Code Remote Overflow DoS Source: REDHAT Type: Patch, Vendor Advisory RHSA-2004:050 Source: REDHAT Type: Patch, Vendor Advisory RHSA-2004:051 Source: BID Type: Patch, Vendor Advisory 9641 Source: CCN Type: BID-9641 Mutt Menu Drawing Remote Buffer Overflow Vulnerability Source: SLACKWARE Type: UNKNOWN SSA:2004-043 Source: CCN Type: slackware-security Mailing List, Thu, 12 Feb 2004 12:19:00 -0800 (PST) mutt security update (SSA:2004-043-01) Source: XF Type: UNKNOWN mutt-index-menu-bo(15134) Source: XF Type: UNKNOWN mutt-index-menu-bo(15134) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:811 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:838 | ||||||||||||||||||||||||
Vulnerable Configuration: | Configuration 1: Configuration RedHat 1: Denotes that component is vulnerable | ||||||||||||||||||||||||
Oval Definitions | |||||||||||||||||||||||||
| |||||||||||||||||||||||||
BACK |