Home

CVE-2007-2683

Description

Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via & characters in the GECOS field, which triggers the overflow during alias expansion.

Risk Information

Base Score
7.8
MODERATE
Vector
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.131

Associated Vulnerability

VulnerabilityOS Platform
(RHSA-2007:0386) Moderate: mutt security update mutt-1.4.2.2-3.0.2.el5.i386.rpmLinux
(RHSA-2007:0386) Moderate: mutt security update mutt-1.4.2.2-3.0.2.el5.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234