|
|
CVE Reference: CVE-2003-0721 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2003-0721 |
|
|
Description: Integer signedness error in rfc2231_get_param from strings.c in PINE before 4.58 allows remote attackers to execute arbitrary code via an email that causes an out-of-bounds array access using a negative number. |
|
|
CVE Status: Candidate |
|
|
References: SUSE REDHAT http://www.redhat.com/support/errata/RHSA-2003-274.html http://www.redhat.com/support/errata/RHSA-2003-273.html OVAL http://oval.mitre.org/oval/definitions/data/oval503.html IDEFENSE http://www.idefense.com/advisory/09.10.03.txt FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2003-September/009850.html ENGARDE BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=106367213400313&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=106329356702508&w=2 |
|
| Return to the previous page. |
