Evolution@2.3.1 Security Vulnerabilities and Issues — Evolution@2.3.1 CVE List

Lucene search

GnomeEvolution2.3.1

5 matches found

CVE•added 2013/03/08 9:55 p.m.•76 views

CVE-2011-3201

GNOME Evolution before 3.2.3 allows user-assisted remote attackers to read arbitrary files via the attachment parameter to a mailto: URL, which attaches the file to the email.

4.3CVSS6.5AI score0.00808EPSS

CVE•added 2005/08/12 4:0 a.m.•62 views

CVE-2005-2549

Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) full vCard data, (2) contact data from remote LDAP servers, or (3) task list data from remote servers.

7.5CVSS7.6AI score0.02934EPSS

CVE•added 2005/08/12 4:0 a.m.•44 views

CVE-2005-2550

Format string vulnerability in Evolution 1.4 through 2.3.6.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the calendar entries such as task lists, which are not properly handled when the user selects the Calendars tab.

7.5CVSS7.4AI score0.05157EPSS

CVE•added 2006/02/02 11:2 a.m.•40 views

CVE-2006-0528

The cairo library (libcairo), as used in GNOME Evolution and possibly other products, allows remote attackers to cause a denial of service (persistent client crash) via an attached text file that contains "Content-Disposition: inline" in the header, and a very long line in the body, which causes th...

5CVSS6.7AI score0.05109EPSS

CVE•added 2006/06/02 10:2 p.m.•39 views

CVE-2006-2789

Evolution 2.2.x and 2.3.x in GNOME 2.7 and 2.8, when "load images if sender in addressbook" is enabled, allows remote attackers to cause a denial of service (persistent crash) via a crafted "From" header that triggers an assert error in camel-internet-address.c when a null pointer is used.

2.6CVSS6.4AI score0.00786EPSS