Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2005:267
HistoryAug 29, 2005 - 12:00 a.m.

(RHSA-2005:267) Evolution security update

2005-08-2900:00:00
access.redhat.com
15

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.11 Low

EPSS

Percentile

94.6%

JSON

Evolution is the GNOME collection of personal information management (PIM)
tools.

A format string bug was found in Evolution. If a user tries to save a
carefully crafted meeting or appointment, arbitrary code may be executed as
the user running Evolution. The Common Vulnerabilities and Exposures
project has assigned the name CAN-2005-2550 to this issue.

Additionally, several other format string bugs were found in Evolution. If
a user views a malicious vCard, connects to a malicious LDAP server, or
displays a task list from a malicious remote server, arbitrary code may be
executed as the user running Evolution. The Common Vulnerabilities and
Exposures project has assigned the name CAN-2005-2549 to this issue. Please
note that this issue only affects Red Hat Enterprise Linux 4.

All users of Evolution should upgrade to these updated packages, which
contain a backported patch which resolves this issue.

Related

nessus 8
openvas 6
centos 1
gentoo 1
suse 1
debian 2
osv 1
freebsd 1
ubuntucve 2
debiancve 2
cve 2
nessus
nessus
FreeBSD : evolution -- remote format string vulnerabilities (e5afdf63-1746-11da-978e-0001020eed82)
2006-05-13 00:00:00
Fedora Core 4 : evolution-2.2.3-2.fc4 (2005-743)
2005-08-18 00:00:00
SUSE-SA:2005:054: evolution
2005-10-05 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200508-12 (evolution)
2008-09-24 00:00:00
FreeBSD Ports: evolution
2008-09-04 00:00:00
FreeBSD Ports: evolution
2008-09-04 00:00:00
centos
centos
evolution security update
2005-08-29 19:46:26
gentoo
gentoo
Evolution: Format string vulnerabilities
2005-08-23 00:00:00
suse
suse
remote code execution in evolution
2005-09-16 13:05:45
debian
debian
[SECURITY] [DSA 1016-1] New evolution packages fix arbitrary code execution
2006-03-23 13:42:27
[SECURITY] [DSA 1016-1] New evolution packages fix arbitrary code execution
2006-03-23 13:42:27
osv
osv
evolution - format string vulnerabilities
2006-03-23 00:00:00
freebsd
freebsd
evolution -- remote format string vulnerabilities
2005-08-10 00:00:00
ubuntucve
ubuntucve
CVE-2005-2550
2005-08-12 00:00:00
CVE-2005-2549
2005-08-12 00:00:00
debiancve
debiancve
CVE-2005-2550
2005-08-12 04:00:00
CVE-2005-2549
2005-08-12 04:00:00
cve
cve
CVE-2005-2550
2005-08-12 04:00:00
CVE-2005-2549
2005-08-12 04:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.11 Low

EPSS

Percentile

94.6%

JSON
Related for RHSA-2005:267
nessus8openvas6centos1gentoo1suse1debian2osv1freebsd1ubuntucve2debiancve2cve2