Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2018-14354 | 7.5 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with a manual subscription or unsubscripti
|
24-08-2020 - 17:37 | 17-07-2018 - 17:29 | |
CVE-2018-14357 | 7.5 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with an automatic subscription.
|
24-08-2020 - 17:37 | 17-07-2018 - 17:29 | |
CVE-2018-14363 | 5.0 |
An issue was discovered in NeoMutt before 2018-07-16. newsrc.c does not properly restrict '/' characters that may have unsafe interaction with cache pathnames.
|
21-05-2020 - 01:16 | 17-07-2018 - 17:29 | |
CVE-2018-14349 | 7.5 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a NO response without a message.
|
20-05-2020 - 01:47 | 17-07-2018 - 17:29 | |
CVE-2018-14350 | 7.5 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/message.c has a stack-based buffer overflow for a FETCH response with a long INTERNALDATE field.
|
20-05-2020 - 01:39 | 17-07-2018 - 17:29 | |
CVE-2018-14351 | 7.5 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a long IMAP status mailbox literal count size.
|
20-05-2020 - 01:33 | 17-07-2018 - 17:29 | |
CVE-2018-14352 | 7.5 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in imap/util.c does not leave room for quote characters, leading to a stack-based buffer overflow.
|
20-05-2020 - 01:25 | 17-07-2018 - 17:29 | |
CVE-2018-14353 | 7.5 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in imap/util.c has an integer underflow.
|
20-05-2020 - 01:23 | 17-07-2018 - 17:29 | |
CVE-2018-14355 | 5.0 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/util.c mishandles ".." directory traversal in a mailbox name.
|
20-05-2020 - 01:19 | 17-07-2018 - 17:29 | |
CVE-2018-14356 | 7.5 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c mishandles a zero-length UID.
|
20-05-2020 - 01:07 | 17-07-2018 - 17:29 | |
CVE-2018-14358 | 7.5 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/message.c has a stack-based buffer overflow for a FETCH response with a long RFC822.SIZE field.
|
20-05-2020 - 00:48 | 17-07-2018 - 17:29 | |
CVE-2018-14362 | 7.5 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c does not forbid characters that may have unsafe interaction with message-cache pathnames, as demonstrated by a '/' character.
|
19-05-2020 - 17:19 | 17-07-2018 - 17:29 | |
CVE-2018-14361 | 7.5 |
An issue was discovered in NeoMutt before 2018-07-16. nntp.c proceeds even if memory allocation fails for messages data.
|
19-05-2020 - 17:18 | 17-07-2018 - 17:29 | |
CVE-2018-14360 | 7.5 |
An issue was discovered in NeoMutt before 2018-07-16. nntp_add_group in newsrc.c has a stack-based buffer overflow because of incorrect sscanf usage.
|
19-05-2020 - 17:17 | 17-07-2018 - 17:29 | |
CVE-2018-14359 | 7.5 |
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They have a buffer overflow via base64 data.
|
19-05-2020 - 17:13 | 17-07-2018 - 17:29 |