Lucene search
MitreCVE-2002-2325HistoryOct 26, 2007 - 7:00 p.m.
CVE-2002-2325
2007-10-2619:00:00
CWE-20
mitre
web.nvd.nist.gov
23
c-client library
imap
denial of service
mime-encoded email
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.9
Confidence
High
EPSS
0.022
Percentile
89.7%
The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header containing an empty boundary field.
Affected configurations
Node
university_of_washingtonpineMatch4.20
ORuniversity_of_washingtonpineMatch4.21
ORuniversity_of_washingtonpineMatch4.30
ORuniversity_of_washingtonpineMatch4.33
ORuniversity_of_washingtonpineMatch4.44
| Vendor | Product | Version | CPE |
|---|---|---|---|
| university_of_washington | pine | 4.20 | cpe:2.3:a:university_of_washington:pine:4.20:*:*:*:*:*:*:* |
| university_of_washington | pine | 4.21 | cpe:2.3:a:university_of_washington:pine:4.21:*:*:*:*:*:*:* |
| university_of_washington | pine | 4.30 | cpe:2.3:a:university_of_washington:pine:4.30:*:*:*:*:*:*:* |
| university_of_washington | pine | 4.33 | cpe:2.3:a:university_of_washington:pine:4.33:*:*:*:*:*:*:* |
| university_of_washington | pine | 4.44 | cpe:2.3:a:university_of_washington:pine:4.44:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2002-2325
2002-12-31 05:00:00
exploitdb
exploitdb
Pine 4.x - Empty MIME Boundary Denial of Service
2002-07-24 00:00:00
cvelist
cvelist
CVE-2002-2325
2007-10-26 19:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.9
Confidence
High
EPSS
0.022
Percentile
89.7%
Related for CVE-2002-2325