Lucene search
FreeBSD Ports: sylpheed, sylpheed-claws, sylpheed-gtk2
🗓️ 04 Sep 2008 00:00:00Reported by Copyright (c) 2005 E-Soft Inc. http://www.securityspace.comType 
openvas🔗 plugins.openvas.org👁 21 Views
FreeBSD Ports: sylpheed, sylpheed-claws, sylpheed-gtk2. Vulnerability in versions before 1.0.
Show more
| Reporter | Title | Published | Views | Family All 16 |
|---|---|---|---|---|
 | Fedora Core 3 : sylpheed-1.0.3-0.FC3 (2005-211) | 12 Sep 200500:00 | – | nessus |
| FreeBSD : sylpheed -- buffer overflow in header processing (f8536143-9bc4-11d9-b8b3-000a95bc6fae) | 13 Jul 200500:00 | – | nessus |
| RHEL 2.1 : sylpheed (RHSA-2005:303) | 18 Mar 200500:00 | – | nessus |
| Fedora Core 2 : sylpheed-1.0.3-0.FC2 (2005-224) | 19 May 200500:00 | – | nessus |
| GLSA-200503-26 : Sylpheed, Sylpheed-claws: Message reply overflow | 21 Mar 200500:00 | – | nessus |
 | CVE-2005-0667 | 7 Mar 200505:00 | – | nvd |
| Gentoo Security Advisory GLSA 200503-26 (sylpheed sylpheed-claws) | 24 Sep 200800:00 | – | openvas |
| Gentoo Security Advisory GLSA 200503-26 (sylpheed sylpheed-claws) | 24 Sep 200800:00 | – | openvas |
| FreeBSD Ports: sylpheed, sylpheed-claws, sylpheed-gtk2 | 4 Sep 200800:00 | – | openvas |
 | [ GLSA 200503-26 ] Sylpheed, Sylpheed-claws: Message reply overflow | 22 Mar 200500:00 | – | securityvulns |
10
#
#VID f8536143-9bc4-11d9-b8b3-000a95bc6fae
# OpenVAS Vulnerability Test
# $
# Description: Auto generated from vuxml or freebsd advisories
#
# Authors:
# Thomas Reinke <[email protected]>
#
# Copyright:
# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com
# Text descriptions are largely excerpted from the referenced
# advisories, and are Copyright (c) the respective author(s)
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#
include("revisions-lib.inc");
tag_insight = "The following packages are affected:
sylpheed
sylpheed-claws
sylpheed-gtk2
CVE-2005-0667
Buffer overflow in Sylpheed before 1.0.3 and other versions before
1.9.5 allows remote attackers to execute arbitrary code via an e-mail
message with certain headers containing non-ASCII characters that are
not properly handled when the user replies to the message.";
tag_solution = "Update your system with the appropriate patches or
software upgrades.
http://sylpheed.good-day.net/index.cgi.en#changes
http://www.vuxml.org/freebsd/f8536143-9bc4-11d9-b8b3-000a95bc6fae.html";
tag_summary = "The remote host is missing an update to the system
as announced in the referenced advisory.";
if(description)
{
script_id(52152);
script_version("$Revision: 4188 $");
script_tag(name:"last_modification", value:"$Date: 2016-09-30 07:56:47 +0200 (Fri, 30 Sep 2016) $");
script_tag(name:"creation_date", value:"2008-09-04 20:41:11 +0200 (Thu, 04 Sep 2008)");
script_cve_id("CVE-2005-0667");
script_tag(name:"cvss_base", value:"5.1");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:H/Au:N/C:P/I:P/A:P");
script_name("FreeBSD Ports: sylpheed, sylpheed-claws, sylpheed-gtk2");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
script_family("FreeBSD Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/freebsdrel", "login/SSH/success");
script_tag(name : "insight" , value : tag_insight);
script_tag(name : "solution" , value : tag_solution);
script_tag(name : "summary" , value : tag_summary);
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
#
# The script code starts here
#
include("pkg-lib-bsd.inc");
txt = "";
vuln = 0;
bver = portver(pkg:"sylpheed");
if(!isnull(bver) && revcomp(a:bver, b:"0.8")>=0 && revcomp(a:bver, b:"1.0.3")<0) {
txt += 'Package sylpheed version ' + bver + ' is installed which is known to be vulnerable.\n';
vuln = 1;
}
if(!isnull(bver) && revcomp(a:bver, b:"1.9")>=0 && revcomp(a:bver, b:"1.9.5")<0) {
txt += 'Package sylpheed version ' + bver + ' is installed which is known to be vulnerable.\n';
vuln = 1;
}
bver = portver(pkg:"sylpheed-claws");
if(!isnull(bver) && revcomp(a:bver, b:"0.8")>=0 && revcomp(a:bver, b:"1.0.3")<0) {
txt += 'Package sylpheed-claws version ' + bver + ' is installed which is known to be vulnerable.\n';
vuln = 1;
}
if(!isnull(bver) && revcomp(a:bver, b:"1.9")>=0 && revcomp(a:bver, b:"1.9.5")<0) {
txt += 'Package sylpheed-claws version ' + bver + ' is installed which is known to be vulnerable.\n';
vuln = 1;
}
bver = portver(pkg:"sylpheed-gtk2");
if(!isnull(bver) && revcomp(a:bver, b:"0.8")>=0 && revcomp(a:bver, b:"1.0.3")<0) {
txt += 'Package sylpheed-gtk2 version ' + bver + ' is installed which is known to be vulnerable.\n';
vuln = 1;
}
if(!isnull(bver) && revcomp(a:bver, b:"1.9")>=0 && revcomp(a:bver, b:"1.9.5")<0) {
txt += 'Package sylpheed-gtk2 version ' + bver + ' is installed which is known to be vulnerable.\n';
vuln = 1;
}
if(vuln) {
security_message(data:string(txt));
} else if (__pkg_match) {
exit(99); # Not vulnerable.
}
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo04 Sep 2008 00:00Current
EPSS0.0334