CVE-2003-0297
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2003-0297
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service (crash) and possibly execute arbitrary code via certain large (1) literal and (2) mailbox size values that cause either integer signedness errors or integer overflow errors.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多家厂商IMAP客户端邮箱大小内存破坏漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
多数EMAIL客户端支持IMAP协议。 多数EMAIL客户端在通过IMAP协议处理邮箱大小值时存在问题,远程攻击者可以利用这个漏洞对客户端进行拒绝服务攻击,或通过特殊值破坏内存,可能以用户进程权限在系统上执行任意指令。 问题在处理大的邮箱大小时会发生内存破坏,许多IMAP客户端执行malloc(messages_count * sizeof(struct message))操作,并把数据读取到内存中,由于没有检查邮箱大小,如果恶意IMAP服务器提供超长的邮箱大小值,会破坏堆栈中信息。可能以用户进程权限在系
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2003-0297
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2003-0297
请登录查看更多情报信息。
Vendor Advisories for CVE-2003-0297 (1)
Mailing List Discussions for CVE-2003-0297 (1)
Other References for CVE-2003-0297 (2)
Same Patch Batch · n/a · 2003-05-15 · 13 CVEs total
| CVE-2003-0246 | Linux Kernel IOPERM系统调用I/O端口访问漏洞 | |
| CVE-2003-0291 | 3com OfficeConnect Remote 812 ADSL Router HTTP请求泄露漏洞 | |
| CVE-2003-0292 | Inktomi Traffic Server跨站脚本攻击漏洞 | |
| CVE-2003-0293 | PalmOS服务拒绝漏洞 | |
| CVE-2003-0294 | php-proxima autohtml.php读取任意文件漏洞 | |
| CVE-2003-0295 | vBulletin private.php跨站脚本攻击漏洞 | |
| CVE-2003-0296 | Evolution The IMAP Client服务拒绝漏洞 | |
| CVE-2003-0298 | Mozilla IMAP Client拒绝服务漏洞 | |
| CVE-2003-0299 | The IMAP Client mutt Balsa服务拒绝漏洞 | |
| CVE-2003-0300 | Sylpheed IMAP服务器服务拒绝漏洞 | |
| CVE-2003-0301 | Outlook Express IMAP客户端服务拒绝漏洞 | |
| CVE-2003-0302 | Eudora IMAP客户端服务拒绝漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-10608
DedeCMS carbuyaction.php RemoveXSS sql injection - CVE-2026-10607
DedeCMS flink.php dede_htmlspecialchars sql injection - CVE-2026-10606
DedeCMS Feedback feedback.php TrimMsg sql injection - CVE-2026-10581
DedeCMS download.php base64_decode server-side request forge - CVE-2026-10565
Open5GS NGAP Handover gmm-sm.c gmm_state_security_mode race
V. Comments for CVE-2003-0297
No comments yet