Required CVE Record Information
Description
Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) full vCard data, (2) contact data from remote LDAP servers, or (3) task list data from remote servers.
References 13 Total
- novell.com: SUSE-SA:2005:054 vendor-advisory
- securityfocus.com: 14532 vdb-entry
- redhat.com: RHSA-2005:267 vendor-advisory
- secunia.com: 19380 third-party-advisory
- debian.org: DSA-1016 vendor-advisory
- redhat.com: FEDORA-2005-743 vendor-advisory
- mandriva.com: MDKSA-2005:141 vendor-advisory
- secunia.com: 16394 third-party-advisory
- oval.cisecurity.org: oval:org.mitre.oval:def:9553 vdb-entrysignature
- http://www.sitic.se/eng/advisories_and_recommendations/sa05-001.html
- securityfocus.com: 20050810 Evolution multiple remote format string bugs mailing-list
- marc.info: 20050810 Evolution multiple remote format string bugs mailing-list
- usn.ubuntu.com: USN-166-1 vendor-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 13 Total
- novell.com: SUSE-SA:2005:054 vendor-advisoryx_transferred
- securityfocus.com: 14532 vdb-entryx_transferred
- redhat.com: RHSA-2005:267 vendor-advisoryx_transferred
- secunia.com: 19380 third-party-advisoryx_transferred
- debian.org: DSA-1016 vendor-advisoryx_transferred
- redhat.com: FEDORA-2005-743 vendor-advisoryx_transferred
- mandriva.com: MDKSA-2005:141 vendor-advisoryx_transferred
- secunia.com: 16394 third-party-advisoryx_transferred
- oval.cisecurity.org: oval:org.mitre.oval:def:9553 vdb-entrysignaturex_transferred
- http://www.sitic.se/eng/advisories_and_recommendations/sa05-001.html x_transferred
- securityfocus.com: 20050810 Evolution multiple remote format string bugs mailing-listx_transferred
- marc.info: 20050810 Evolution multiple remote format string bugs mailing-listx_transferred
- usn.ubuntu.com: USN-166-1 vendor-advisoryx_transferred