2068 matches found
CVE-2005-0806
Evolution 2.0.3 allows remote attackers to cause a denial of service application crash or hang via crafted messages, possibly involving charsets in attachment filenames...
[SECURITY] [DSA 710-1] New gtkhtml packages fix denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA 710-1 [email protected] http://www.debian.org/security/ Martin Schulze April 18th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 710-1] New gtkhtml packages fix denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA 710-1 [email protected] http://www.debian.org/security/ Martin Schulze April 18th, 2005 http://www.debian.org/security/faq -...
DSA-710-1 gtkhtml - null pointer dereference
Bulletin has no description...
Debian DSA-710-1 : gtkhtml - NULL pointer dereference
Alan Cox discovered a problem in gtkhtml, an HTML rendering widget used by the Evolution mail reader. Certain malformed messages could cause a crash due to a NULL pointer dereference. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
CVE-2005-0806
Evolution 2.0.3 allows remote attackers to cause a denial of service application crash or hang via crafted messages, possibly involving charsets in attachment filenames...
CVE-2005-0806
Evolution 2.0.3 allows remote attackers to cause a denial of service application crash or hang via crafted messages, possibly involving charsets in attachment filenames...
CVE-2005-0806
CVE-2005-0806 affects Evolution (notably 2.0.3) and enables a remote attacker to cause a denial of service (application crash or hang) by sending crafted messages, with possible involvement of charset handling in attachment filenames. The issue is corroborated by multiple advisories: RHSA-2005:39...
Ximian Evolution < 2.0.4 Content-Parsing DoS
Binary data 2713.prm...
Mandrake Linux Security Advisory : evolution (MDKSA-2005:059)
It was discovered that certain types of messages could be used to crash the Evolution mail client. Fixes have been applied to correct this behaviour. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Mandrake Linux...
Novell Ximan Evolution gropware e-mail client DoS
Large number of text attachments leads to resource exhaustion...
[Full-Disclosure] Novell/Ximian Evolution multiple text attachments DoS
================== =====Analysis===== ================== I just wanted to inform users of Ximian Evolution 2.0 software that there exists a way to temporarily DoS the local application and/or machine by attaching an absurd amount of .ezm files to a normal email. It seems that Evolution tries to...
GLSA-200501-35 : Evolution: Integer overflow in camel-lock-helper
The remote host is affected by the vulnerability described in GLSA-200501-35 Evolution: Integer overflow in camel-lock-helper Max Vozeler discovered an integer overflow in the camel-lock-helper application, which is installed as setgid mail by default. Impact : A local attacker could exploit this...
[SECURITY] [DSA 673-1] New evolution packages fix arbitrary code execution as root
-------------------------------------------------------------------------- Debian Security Advisory DSA 673-1 [email protected] http://www.debian.org/security/ Martin Schulze February 10th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 673-1] New evolution packages fix arbitrary code execution as root
-------------------------------------------------------------------------- Debian Security Advisory DSA 673-1 [email protected] http://www.debian.org/security/ Martin Schulze February 10th, 2005 http://www.debian.org/security/faq -...
Debian DSA-673-1 : evolution - integer overflow
Max Vozeler discovered an integer overflow in a helper application inside of Evolution, a free groupware suite. A local attacker could cause the setuid root helper to execute arbitrary code with elevated privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...
DSA-673-1 evolution - integer overflow
Bulletin has no description...
Mandrake Linux Security Advisory : evolution (MDKSA-2005:024)
Max Vozeler discovered an integer overflow in the camel-lock-helper application. This application is installed setgid mail by default. A local attacker could exploit this to execute malicious code with the privileges of the 'mail' group; likewise a remote attacker could setup a malicious POP serv...
CVE-2005-0102
Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier allows local users or remote malicious POP3 servers to execute arbitrary code via a length value of -1, which leads to a zero byte memory allocation and a buffer overflow...
CVE-2005-0102
Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier allows local users or remote malicious POP3 servers to execute arbitrary code via a length value of -1, which leads to a zero byte memory allocation and a buffer overflow...