VDB
CVE-2006-3242
CVE-2006-3242
PUBLISHED
CVSS 7.5 HIGH
Stack-based buffer overflow in the browse_get_namespace function in imap/browse.c of Mutt 1.4.2.1 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via long namespaces received from the IMAP server.
EPSS 7.54% · 92.0th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
7.54%
92.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| mutt | mutt | 1.4.2, 1.4.2.1 |
| n/a | n/a | * |
Timeline
- Jun 27, 2006 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 3, 2022 CVE Updated
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 24, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- http://secunia.com/advisories/20810 advisory
- 21220 third-party-advisory
- GLSA-200606-27 vendor-advisory
- 20895 third-party-advisory
- 21039 third-party-advisory
- http://dev.mutt.org/cgi-bin/gitweb.cgi?p=mutt/.git%3Ba=commit%3Bh=dc0272b749f0e2b102973b7ac43dbd3908507540 url
- RHSA-2006:0577 vendor-advisory
- oval:org.mitre.oval:def:10826 vdb
- 20887 third-party-advisory
- ADV-2006-2522 vdb
- MDKSA-2006:115 vendor-advisory
- USN-307-1 vendor-advisory
- 2006-0038 vendor-advisory
- http://dev.mutt.org/cgi-bin/viewcvs.cgi/mutt/imap/browse.c?r1=1.34.2.2&r2=1.34.2.3 url
- 20854 third-party-advisory
- 21135 third-party-advisory
- SSA:2006-207-01 vendor-advisory
- 18642 vdb
- OpenPKG-SA-2006.013 vendor-advisory
- mutt-imap-namespace-bo(27428) vdb
…and 13 more