FreeBSDB1B5C125-2308-11DC-B91A-001921AB2FA4

HistoryJun 23, 2007 - 12:00 a.m.

evolution-data-server -- remote execution of arbitrary code vulnerability

2007-06-2300:00:00

vuxml.freebsd.org

0.03 Low

EPSS

Percentile

90.9%

JSON

Debian project reports:

It was discovered that the IMAP code in the Evolution
Data Server performs insufficient sanitising of a value
later used an array index, which can lead to the execution
of arbitrary code.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchevolution-data-server< 1.10.2_1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	evolution-data-server	< 1.10.2_1	UNKNOWN

References

bugzilla.gnome.org/show_bug.cgi?id=447414

secunia.com/advisories/25766/

nessus 17

prion 1

openvas 16

securityvulns 2

debian 2

ubuntucve 1

redhat 2

cve 1

gentoo 2

suse 1

veracode 1

oraclelinux 2

centos 2

cvelist 1

debiancve 1

ubuntu 1

osv 1

nessus

Mandrake Linux Security Advisory : evolution (MDKSA-2007:136)

2007-06-27 00:00:00

Oracle Linux 3 / 4 : evolution (ELSA-2007-0509)

2013-07-12 00:00:00

Scientific Linux Security Update : evolution on SL5.x i386/x86_64

2012-08-01 00:00:00

prion

Code injection

2007-06-19 16:30:00

openvas

Gentoo Security Advisory GLSA 200711-04 (evolution-data-server)

2008-09-24 00:00:00

Gentoo Security Advisory GLSA 200707-03 (evolution-data-server)

2008-09-24 00:00:00

Mandriva Update for evolution MDKSA-2007:136 (evolution)

2009-04-09 00:00:00

securityvulns

Evolution Data Server integer overflow

2007-06-22 00:00:00

[Full-disclosure] [USN-475-1] evolution-data-server vulnerability

2007-06-22 00:00:00

debian

[SECURITY] [DSA 1321-1] New evolution-data-server packages fix arbitrary code execution

2007-06-23 00:00:00

[SECURITY] [DSA 1325-1] New evolution packages fix arbitrary code execution

2007-06-29 00:00:00

ubuntucve

CVE-2007-3257

2007-06-19 00:00:00

redhat

(RHSA-2007:0509) Important: evolution security update

2007-06-25 00:00:00

(RHSA-2007:0510) Important: evolution-data-server security update

2007-06-25 00:00:00

cve

CVE-2007-3257

2007-06-19 16:30:00

gentoo

Evolution: User-assisted remote execution of arbitrary code

2007-07-02 00:00:00

Evolution: User-assisted remote execution of arbitrary code

2007-11-06 00:00:00

suse

remote code execution in evolution,evolution-data-server

2007-07-05 17:43:27

veracode

Arbitrary Code Execution

2020-04-10 00:19:11

oraclelinux

Important: evolution-data-server security update

2007-06-26 00:00:00

Important: evolution security update

2007-06-25 00:00:00

centos

evolution security update

2007-06-27 11:05:43

evolution security update

2007-06-25 14:45:34

cvelist

CVE-2007-3257

2007-06-19 16:00:00

debiancve

CVE-2007-3257

2007-06-19 16:30:00

ubuntu

evolution-data-server vulnerability

2007-06-21 00:00:00

osv

evolution

2007-06-29 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
OpenSource

@2024 Vulners Inc

evolution-data-server -- remote execution of arbitrary code vulnerability

References

Related