K Mail

DATE	CVE	VULNERABILITY TITLE	RISK
2007-03-07	CVE-2006-7139	Improper Input Validation vulnerability in KDE K-Mail 1.9.1 Kmail 1.9.1 on KDE 3.5.2, with "Prefer HTML to Plain Text" enabled, allows remote attackers to cause a denial of service (crash) via an HTML e-mail with certain table and frameset tags that trigger a segmentation fault, possibly involving invalid free or delete operations. network high complexity kde CWE-20	2.6
2007-03-06	CVE-2007-1265	Unspecified vulnerability in KDE K-Mail KMail 1.9.5 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents KMail from visually distinguishing between signed and unsigned portions of OpenPGP messages with multiple components, which allows remote attackers to forge the contents of a message without detection. network low complexity kde	7.8
2002-06-25	CVE-2002-0342	Denial Of Service vulnerability in KDE K-Mail 1.2 Kmail 1.2 on KDE 2.1.1 allows remote attackers to cause a denial of service (crash) via an email message whose body is approximately 55 K long. network low complexity kde	5.0
2000-01-04	CVE-1999-0735	Unspecified vulnerability in KDE K-Mail KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories. local low complexity kde	4.6