Vulnerability Details CVE-2003-0236
Integer signedness errors in the POP3 client for Mirabilis ICQ Pro 2003a allow remote attackers to execute arbitrary code via the (1) Subject or (2) Date headers.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.032
EPSS Ranking 86.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0051.html
- http://marc.info/?l=bugtraq&m=105216842131995&w=2
- http://www.coresecurity.com/common/showdoc.php?idx=315&idxseccion=10
- http://www.securityfocus.com/bid/7462
- http://www.securityfocus.com/bid/7463
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11939
- http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0051.html
- http://marc.info/?l=bugtraq&m=105216842131995&w=2
- http://www.coresecurity.com/common/showdoc.php?idx=315&idxseccion=10
- http://www.securityfocus.com/bid/7462
- http://www.securityfocus.com/bid/7463
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11939
Products affected by CVE-2003-0236
-
cpe:2.3:a:mirabilis:icq:2000.0a
-
cpe:2.3:a:mirabilis:icq:2000.0b_build3278
-
cpe:2.3:a:mirabilis:icq:2001a
-
cpe:2.3:a:mirabilis:icq:2001b_build3636
-
cpe:2.3:a:mirabilis:icq:2001b_build3638
-
cpe:2.3:a:mirabilis:icq:2001b_build3659
-
cpe:2.3:a:mirabilis:icq:2002a_build3722
-
cpe:2.3:a:mirabilis:icq:2002a_build3727
-
cpe:2.3:a:mirabilis:icq:2003a_build3777
-
cpe:2.3:a:mirabilis:icq:2003a_build3799
-
cpe:2.3:a:mirabilis:icq:2003a_build3800
-
cpe:2.3:a:mirabilis:icq:99a_2.15build1701
-
cpe:2.3:a:mirabilis:icq:99a_2.21build1800