Lucene search

RedosROS-20221122-01

HistoryNov 22, 2022 - 12:00 a.m.

ROS-20221122-01

2022-11-2200:00:00

redos.red-soft.ru

mutt mail client

buffer overflow

remote intruder

unauthorized access

denial of service

unix

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS

0.003

Percentile

70.0%

JSON

Vulnerability of mutt_decode_uuencoded() function implementation in Mutt mail client is related to operation overflow
out of memory buffer boundaries. Exploitation of the vulnerability could allow a remote intruder
gain unauthorized access to protected information or cause a denial of service

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64mutt< 2.2.9-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
redos	7.3	x86_64	mutt	< 2.2.9-1	UNKNOWN

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS

0.003

Percentile

70.0%

JSON

Related for ROS-20221122-01