CVE-2005-2549

Currently unrated

Key Information:

Vendor: Gnome
Status: Evolution
Vendor: CVE Published:; 12 August 2005

Summary

Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) full vCard data, (2) contact data from remote LDAP servers, or (3) task list data from remote servers.

References

http://www.novell.com/linux/security/advisories/2005_54_e...

vendor-advisoryx_refsource_SUSE

http://www.securityfocus.com/bid/14532

vdb-entryx_refsource_BID

http://www.redhat.com/support/errata/RHSA-2005-267.html

vendor-advisoryx_refsource_REDHAT

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 12, 2005
Vulnerability Reserved
Aug 12, 2005