7.5

CVE-2005-2549

EPSS 2.93%
Veröffentlicht 12.08.2005 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) full vCard data, (2) contact data from remote LDAP servers, or (3) task list data from remote servers.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 16

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Gnome ≫ Evolution Version1.5

Gnome ≫ Evolution Version2.0

Gnome ≫ Evolution Version2.1

Gnome ≫ Evolution Version2.2

Gnome ≫ Evolution Version2.3.1

Gnome ≫ Evolution Version2.3.2

Gnome ≫ Evolution Version2.3.3

Gnome ≫ Evolution Version2.3.4

Gnome ≫ Evolution Version2.3.5

Gnome ≫ Evolution Version2.3.6.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.93%	0.852

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

https://usn.ubuntu.com/166-1/

http://marc.info/?l=full-disclosure&m=112368237712032&w=2

http://secunia.com/advisories/16394

http://secunia.com/advisories/19380

http://www.debian.org/security/2006/dsa-1016

http://www.mandriva.com/security/advisories?name=MDKSA-2005:141

http://www.novell.com/linux/security/advisories/2005_54_evolution.html

http://www.redhat.com/archives/fedora-announce-list/2005-August/msg00031.html

http://www.redhat.com/support/errata/RHSA-2005-267.html

http://www.securityfocus.com/archive/1/407789

http://www.securityfocus.com/bid/14532

http://www.sitic.se/eng/advisories_and_recommendations/sa05-001.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9553

https://nvd.nist.gov/vuln/detail/CVE-2005-2549

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-2549

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-2549

EUVD