CVE-2003-0236

Sažetak

Integer signedness errors in the POP3 client for Mirabilis ICQ Pro 2003a allow remote attackers to execute arbitrary code via the (1) Subject or (2) Date headers.

Reference

http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0051.html
http://marc.info/?l=bugtraq&m=105216842131995&w=2
http://www.coresecurity.com/common/showdoc.php?idx=315&idxseccion=10
http://www.securityfocus.com/bid/7462
http://www.securityfocus.com/bid/7463
https://exchange.xforce.ibmcloud.com/vulnerabilities/11939

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

11-07-2017 - 01:29

Objavljeno

27-05-2003 - 04:00