Denial of Service Vulnerability in GNOME Evolution from Novell
CVE-2006-0040

Currently unrated

Key Information:

Vendor: Gnome
Status: Evolution
Vendor: CVE Published:; 10 March 2006

What is CVE-2006-0040?

GNOME Evolution versions up to 2.4.2.1 are susceptible to a denial of service attack that can be triggered by processing a text email containing a multitude of URLs. This vulnerability may lead to excessive CPU and memory usage, resulting in system slowdowns or crashes. The underlying issues relate to potential flaws in the gtkhtml rendering engine, which could be exploited by remote attackers to disrupt the functionality of the email client.

References

http://www.vupen.com/english/advisories/2006/0801

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/25050

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/16899

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 10, 2006
Vulnerability Reserved
Dec 20, 2005

Gnome

What is CVE-2006-0040?

References

Timeline