CVE Vulnerabilities

CVE-2003-0236

Published: May 27, 2003 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Integer signedness errors in the POP3 client for Mirabilis ICQ Pro 2003a allow remote attackers to execute arbitrary code via the (1) Subject or (2) Date headers.

Affected Software

Name Vendor Start Version End Version
Icq Mirabilis 99a_2.15build1701 99a_2.15build1701
Icq Mirabilis 99a_2.21build1800 99a_2.21build1800
Icq Mirabilis 2000.0a 2000.0a
Icq Mirabilis 2000.0b_build3278 2000.0b_build3278
Icq Mirabilis 2001a 2001a
Icq Mirabilis 2001b_build3636 2001b_build3636
Icq Mirabilis 2001b_build3638 2001b_build3638
Icq Mirabilis 2001b_build3659 2001b_build3659
Icq Mirabilis 2002a_build3722 2002a_build3722
Icq Mirabilis 2002a_build3727 2002a_build3727
Icq Mirabilis 2003a_build3777 2003a_build3777
Icq Mirabilis 2003a_build3799 2003a_build3799
Icq Mirabilis 2003a_build3800 2003a_build3800

References