ID |
CVE-2002-0001
|
Summary |
Vulnerability in RFC822 address parser in mutt before 1.2.5.1 and mutt 1.3.x before 1.3.25 allows remote attackers to execute arbitrary commands via an improperly terminated comment or phrase in the address list. |
References |
|
Vulnerable Configurations |
|
CVSS |
Base: | 7.5 (as of 18-10-2016 - 02:15) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-Other |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
LOW |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
PARTIAL |
PARTIAL |
PARTIAL |
|
cvss-vector
via4
|
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
redhat
via4
|
|
refmap
via4
|
bid | 3774 | bugtraq | 20020101 [Announce] SECURITY: mutt-1.2.5.1 and mutt-1.3.25 released. | caldera | CSSA-2002-002.0 | conectiva | CLA-2002:449 | confirm | http://www.mutt.org/announce/mutt-1.2.5.1-1.3.25.html | debian | DSA-096 | freebsd | FreeBSD-SA-02:04 | hp | HPSBTL0201-011 | suse | SuSE-SA:2002:001 | xf | mutt-address-handling-bo(7759) |
|
Last major update |
18-10-2016 - 02:15 |
Published |
27-02-2002 - 05:00 |
Last modified |
18-10-2016 - 02:15 |