CVE-2002-2325 : Denial of Service Vulnerability

Description

The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header containing an empty boundary field.

Products

University of Washington Pine 4.20
University of Washington Pine 4.21
University of Washington Pine 4.30
University of Washington Pine 4.33
University of Washington Pine 4.44

Questions to Ask Vendors

Can you confirm whether your systems are affected by CVE-2002-2325, and if so, what steps are you currently taking to mitigate this vulnerability?
What is your estimated timeline for fully resolving CVE-2002-2325 in your products or services, and how will you communicate updates on this issue to us as your customer?

Recommended Actions

Check out the advisory links provided below.

References

http://webappsec.pbworks.com/Improper-Input-Handling
https://capec.mitre.org/data/definitions/10.html
https://capec.mitre.org/data/definitions/101.html
https://capec.mitre.org/data/definitions/104.html
https://capec.mitre.org/data/definitions/108.html
https://capec.mitre.org/data/definitions/109.html
https://capec.mitre.org/data/definitions/110.html
https://capec.mitre.org/data/definitions/120.html
https://capec.mitre.org/data/definitions/13.html
https://capec.mitre.org/data/definitions/135.html
https://capec.mitre.org/data/definitions/136.html
https://capec.mitre.org/data/definitions/14.html
https://capec.mitre.org/data/definitions/153.html
https://capec.mitre.org/data/definitions/182.html
https://capec.mitre.org/data/definitions/209.html
https://capec.mitre.org/data/definitions/22.html
https://capec.mitre.org/data/definitions/23.html
https://capec.mitre.org/data/definitions/230.html
https://capec.mitre.org/data/definitions/231.html
https://capec.mitre.org/data/definitions/24.html
https://capec.mitre.org/data/definitions/250.html
https://capec.mitre.org/data/definitions/261.html
https://capec.mitre.org/data/definitions/267.html
https://capec.mitre.org/data/definitions/28.html
https://capec.mitre.org/data/definitions/3.html
https://capec.mitre.org/data/definitions/31.html
https://capec.mitre.org/data/definitions/42.html
https://capec.mitre.org/data/definitions/43.html
https://capec.mitre.org/data/definitions/45.html
https://capec.mitre.org/data/definitions/46.html
https://capec.mitre.org/data/definitions/47.html
https://capec.mitre.org/data/definitions/473.html
https://capec.mitre.org/data/definitions/52.html
https://capec.mitre.org/data/definitions/53.html
https://capec.mitre.org/data/definitions/588.html
https://capec.mitre.org/data/definitions/63.html
https://capec.mitre.org/data/definitions/64.html
https://capec.mitre.org/data/definitions/664.html
https://capec.mitre.org/data/definitions/67.html
https://capec.mitre.org/data/definitions/7.html
https://capec.mitre.org/data/definitions/71.html
https://capec.mitre.org/data/definitions/72.html
https://capec.mitre.org/data/definitions/73.html
https://capec.mitre.org/data/definitions/78.html
https://capec.mitre.org/data/definitions/79.html
https://capec.mitre.org/data/definitions/8.html
https://capec.mitre.org/data/definitions/80.html
https://capec.mitre.org/data/definitions/81.html
https://capec.mitre.org/data/definitions/83.html
https://capec.mitre.org/data/definitions/85.html
https://capec.mitre.org/data/definitions/88.html
https://capec.mitre.org/data/definitions/9.html
https://nvd.nist.gov/vuln/detail/CVE-2002-2325

PUBLISHED DATE: December 31, 2002CVE-2002-2325:
Denial of Service Vulnerability

CVSS:

EPSS:

Exploitability:

In KEV:

Description

Products

Questions to Ask Vendors

Recommended Actions

References

Ready to get results you can trust?