1. CVE-Search
  2. CVE-2002-0001
ID CVE-2002-0001
Summary Vulnerability in RFC822 address parser in mutt before 1.2.5.1 and mutt 1.3.x before 1.3.25 allows remote attackers to execute arbitrary commands via an improperly terminated comment or phrase in the address list.
References
Vulnerable Configurations
  • cpe:2.3:a:mutt:mutt:*:*:*:*:*:*:*:*
    cpe:2.3:a:mutt:mutt:*:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 18-10-2016 - 02:15)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
redhat via4
advisories
rhsa
id RHSA-2002:003
refmap via4
bid 3774
bugtraq 20020101 [Announce] SECURITY: mutt-1.2.5.1 and mutt-1.3.25 released.
caldera CSSA-2002-002.0
conectiva CLA-2002:449
confirm http://www.mutt.org/announce/mutt-1.2.5.1-1.3.25.html
debian DSA-096
freebsd FreeBSD-SA-02:04
hp HPSBTL0201-011
suse SuSE-SA:2002:001
xf mutt-address-handling-bo(7759)
Last major update 18-10-2016 - 02:15
Published 27-02-2002 - 05:00
Last modified 18-10-2016 - 02:15
Back to Top