Vulnerabilities > Ximian > Evolution > 1.0.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-04-22 | CVE-2002-1471 | Unspecified vulnerability in Ximian Evolution The camel component for Ximian Evolution 1.0.x and earlier does not verify certificates when it establishes a new SSL connection after previously verifying a certificate, which could allow remote attackers to monitor or modify sessions via a man-in-the-middle attack. | 5.0 |
2003-03-24 | CVE-2003-0130 | Unspecified vulnerability in Ximian Evolution The handle_image function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers to inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image. | 5.0 |
2003-03-24 | CVE-2003-0129 | Denial of Service vulnerability in Ximian Evolution UUEncoding Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (memory consumption) via a mail message that is uuencoded multiple times. | 5.0 |
2003-03-24 | CVE-2003-0128 | Unspecified vulnerability in Ximian Evolution The try_uudecoding function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malicious uuencoded (UUE) header, possibly triggering a heap-based buffer overflow. | 5.0 |
2002-12-31 | CVE-2002-1765 | Denial Of Service vulnerability in Ximian Evolution 1.0.3/1.0.4 Evolution 1.0.3 and 1.0.4 allows remote attackers to cause a denial of service (memory consumption and crash) via an email with a malformed MIME header. | 5.0 |