Published: 24/03/2003 Updated: 11/10/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The try_uudecoding function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and previous versions allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a malicious uuencoded (UUE) header, possibly triggering a heap-based buffer overflow.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ximian evolution 1.0.3
ximian evolution 1.2
ximian evolution 1.2.1
ximian evolution 1.0.4
ximian evolution 1.0.5
ximian evolution 1.2.2
ximian evolution 1.0.8
ximian evolution 1.1.1
ximian evolution 1.0.6
ximian evolution 1.0.7

source: wwwsecurityfocuscom/bid/7118/info A vulnerability has been discovered in the Ximian Evolution Mail User Agent (MUA) The problem occurs when the mailer attempts to process a maliciously encoded e-mail message When attempting to decode the message, the MUA will repeatedly attempt to allocate memory, resulting in system resource ex ...

NVD-CWE-Other http://www.coresecurity.com/common/showdoc.php?idx=309&idxseccion=10 http://www.securityfocus.com/bid/7117 http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0141.html http://www.redhat.com/support/errata/RHSA-2003-108.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000648 http://www.gentoo.org/security/en/glsa/glsa-200303-18.xml http://www.mandriva.com/security/advisories?name=MDKSA-2003:045 http://marc.info/?l=bugtraq&m=104826470527308&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A107 https://nvd.nist.gov https://www.exploit-db.com/exploits/22370/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-0128

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect