CVE-2003-0057

Published Feb 19, 2003

Last updated 8 years ago

CVSS info 7.5

Overview

Description: Multiple buffer overflows in Hypermail 2 before 2.1.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code (1) via a long attachment filename that is not properly handled by the hypermail executable, or (2) by connecting to the mail CGI program from an IP address that reverse-resolves to a long hostname.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:hypermail:hypermail:2.0b25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E7E3C5FD-36CA-49E8-90B7-8AEF59E7173A"
          },
          {
            "criteria": "cpe:2.3:a:hypermail:hypermail:2.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2FBF9616-966A-4776-8A63-582332611991"
          },
          {
            "criteria": "cpe:2.3:a:hypermail:hypermail:2.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "43C84910-81A8-479E-8446-E51215A404CB"
          },
          {
            "criteria": "cpe:2.3:a:hypermail:hypermail:2.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53073616-C4A4-4B46-9D36-D0D7836A4263"
          },
          {
            "criteria": "cpe:2.3:a:hypermail:hypermail:2.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "019EA301-66FB-42AB-8977-509687A2A408"
          },
          {
            "criteria": "cpe:2.3:a:hypermail:hypermail:2.1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F1A5756-4966-4C03-BE6F-3A5452642050"
          },
          {
            "criteria": "cpe:2.3:a:hypermail:hypermail:2.1_.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "947A1327-0EFB-43C2-BE6D-31827EB7A47B"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References