Ximian Evolution version 1.1.1 : Security vulnerabilities, CVEs

cpe:2.3:a:ximian:evolution:1.1.1:*:*:*:*:*:*:*

Copy

CVE-2003-0130

The handle_image function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers to inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image.

Max CVSS

5.0

EPSS Score

2.51%

Published

2003-03-24

Updated

2017-10-11

CVE-2003-0129

Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (memory consumption) via a mail message that is uuencoded multiple times.

Max CVSS

5.0

EPSS Score

6.07%

Published

2003-03-24

Updated

2017-10-11

CVE-2003-0128

The try_uudecoding function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malicious uuencoded (UUE) header, possibly triggering a heap-based buffer overflow.

Max CVSS

5.0

EPSS Score

16.19%

Published

2003-03-24

Updated

2017-10-11

3 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!