CVE-2003-0129

Ximian Evolution Mail User Agent <= 1.2.2 - Denial of Service via Uuencoded Mail Message

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-0129. PoCs published by Core Security.

AI-analyzed exploit summary This exploit demonstrates a memory corruption vulnerability in the Evolution mail client when parsing malformed uuencoded content. The PoC triggers a crash by sending a specially crafted email with an empty uuencoded section, leading to a denial of service.

Description

Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (memory consumption) via a mail message that is uuencoded multiple times.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Core Security · textremotelinux

https://www.exploit-db.com/exploits/22369

View Code ZIP pw:eip

This exploit demonstrates a memory corruption vulnerability in the Evolution mail client when parsing malformed uuencoded content. The PoC triggers a crash by sending a specially crafted email with an empty uuencoded section, leading to a denial of service.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Evolution mail client

No auth needed

Prerequisites: Access to send an email to the target's Evolution mail client

MITRE ATT&CK