CVE-2003-0143 in Qpopperinfo

Summary

The pop_msg function in qpopper 4.0.x before 4.0.5fc2 does not null terminate a message buffer after a call to Qvsnprintf, which could allow authenticated users to execute arbitrary code via a buffer overflow in a mdef command with a long macro name.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Disclosure

03/18/2003

Moderation

VulDB entry created

Entries

1: VDB-20209

CPE

ready

CWE

CWE-119 (Confirmed)

Exploit

Download

CVSS

9.9

EPSS

0.08818

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-0143
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0143
CVE Details	https://www.cvedetails.com/cve/CVE-2003-0143/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!