Lucene search

K
XimianEvolution1.0.3

5 matches found

CVE
CVE
added 2003/03/24 5:0 a.m.54 views

CVE-2003-0128

The try_uudecoding function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malicious uuencoded (UUE) header, possibly triggering a heap-based buffer overflow.

5CVSS7.9AI score0.25266EPSS
CVE
CVE
added 2003/03/24 5:0 a.m.49 views

CVE-2003-0130

The handle_image function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers to inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image.

5CVSS6.5AI score0.14825EPSS
CVE
CVE
added 2003/03/24 5:0 a.m.45 views

CVE-2003-0129

Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (memory consumption) via a mail message that is uuencoded multiple times.

5CVSS6.6AI score0.1935EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.37 views

CVE-2002-1471

The camel component for Ximian Evolution 1.0.x and earlier does not verify certificates when it establishes a new SSL connection after previously verifying a certificate, which could allow remote attackers to monitor or modify sessions via a man-in-the-middle attack.

5CVSS6.6AI score0.00262EPSS
CVE
CVE
added 2005/06/21 4:0 a.m.37 views

CVE-2002-1765

Evolution 1.0.3 and 1.0.4 allows remote attackers to cause a denial of service (memory consumption and crash) via an email with a malformed MIME header.

5CVSS6.7AI score0.00911EPSS