Multiple format string vulnerabilities in Evolution 1.5 up to and including 2.3.6.1 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via (1) full vCard data, (2) contact data from remote LDAP servers, or (3) task list data from remote servers.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnome evolution 2.0 |
||
gnome evolution 2.1 |
||
gnome evolution 2.3.2 |
||
gnome evolution 2.3.3 |
||
gnome evolution 2.3.4 |
||
gnome evolution 1.5 |
||
gnome evolution 2.3.5 |
||
gnome evolution 2.3.6.1 |
||
gnome evolution 2.2 |
||
gnome evolution 2.3.1 |