45 matches found
CVE-2007-2958
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...
Format string
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...
CVE-2007-2958
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...
CVE-2007-2958
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...
CVE-2007-2958
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...
Debian DSA-908-1 : sylpheed-claws - buffer overflows
Colin Leroy discovered several buffer overflows in a number of importer routines in sylpheed-claws, an extended version of the Sylpheed mail client, that could lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
CVE-2006-2920
Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote attackers to bypass the URI check functionality and makes it easier to conduct phishing attacks via a URI that begins with a space character...
CVE-2006-2920
Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote attackers to bypass the URI check functionality and makes it easier to conduct phishing attacks via a URI that begins with a space character...
DEBIAN-CVE-2006-2920
Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote attackers to bypass the URI check functionality and makes it easier to conduct phishing attacks via a URI that begins with a space character...
CVE-2006-2920
Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote attackers to bypass the URI check functionality and makes it easier to conduct phishing attacks via a URI that begins with a space character...
CVE-2006-2920
CVE-2006-2920 affects Sylpheed-Claws and Sylpheed: versions before 2.2.2 and before 2.2.6 can bypass the URI check, enabling phishing via a URI that starts with a space. Vulnerability details and affected versions are stated in the provided documents; no exploits are described in these sources. T...
CVE-2006-2920
Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote attackers to bypass the URI check functionality and makes it easier to conduct phishing attacks via a URI that begins with a space character...
[SECURITY] [DSA 908-1] New sylpheed-claws packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 908-1 [email protected] http://www.debian.org/security/ Martin Schulze November 23rd, 2005 http://www.debian.org/security/faq -...
GLSA-200511-13 : Sylpheed, Sylpheed-Claws: Buffer overflow in LDIF importer
The remote host is affected by the vulnerability described in GLSA-200511-13 Sylpheed, Sylpheed-Claws: Buffer overflow in LDIF importer Colin Leroy reported buffer overflow vulnerabilities in Sylpheed and Sylpheed-Claws. The LDIF importer uses a fixed length buffer to store data of variable lengt...
Sylpheed, Sylpheed-Claws: Buffer overflow in LDIF importer
Background Sylpheed is a lightweight email client and newsreader. Sylpheed-Claws is a 'bleeding edge' version of Sylpheed. They both support the import of address books in LDIF Lightweight Directory Interchange Format. Description Colin Leroy reported buffer overflow vulnerabilities in Sylpheed a...
GLSA-200504-02 : Sylpheed, Sylpheed-claws: Buffer overflow on message display
The remote host is affected by the vulnerability described in GLSA-200504-02 Sylpheed, Sylpheed-claws: Buffer overflow on message display Sylpheed and Sylpheed-claws fail to properly handle messages containing attachments with MIME-encoded filenames. Impact : An attacker can send a malicious emai...
Sylpheed, Sylpheed-claws: Buffer overflow on message display
Background Sylpheed is a lightweight email client and newsreader. Sylpheed-claws is a 'bleeding edge' version of Sylpheed. Description Sylpheed and Sylpheed-claws fail to properly handle messages containing attachments with MIME-encoded filenames. Impact An attacker can send a malicious email...
[ GLSA 200503-26 ] Sylpheed, Sylpheed-claws: Message reply overflow
Gentoo Linux Security Advisory GLSA 200503-26 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
GLSA-200503-26 : Sylpheed, Sylpheed-claws: Message reply overflow
The remote host is affected by the vulnerability described in GLSA-200503-26 Sylpheed, Sylpheed-claws: Message reply overflow Sylpheed and Sylpheed-claws fail to properly handle non-ASCII characters in email headers when composing reply messages. Impact : An attacker can send an email containing ...
Sylpheed, Sylpheed-claws: Message reply overflow
Background Sylpheed is a lightweight email client and newsreader. Sylpheed-claws is a 'bleeding edge' version of Sylpheed. Description Sylpheed and Sylpheed-claws fail to properly handle non-ASCII characters in email headers when composing reply messages. Impact An attacker can send an email...