7.5

CVE-2005-2549

EPSS 2.93%
Published 12.08.2005 04:00:00
Last modified 03.04.2025 01:03:51
Source secalert@redhat.com
Teams watchlist Login
Open Login

Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) full vCard data, (2) contact data from remote LDAP servers, or (3) task list data from remote servers.

Affected products Warnungen 0 Metrics 2 CWE 0 References 16

Data is provided by the National Vulnerability Database (NVD)

Gnome ≫ Evolution Version1.5

Gnome ≫ Evolution Version2.0

Gnome ≫ Evolution Version2.1

Gnome ≫ Evolution Version2.2

Gnome ≫ Evolution Version2.3.1

Gnome ≫ Evolution Version2.3.2

Gnome ≫ Evolution Version2.3.3

Gnome ≫ Evolution Version2.3.4

Gnome ≫ Evolution Version2.3.5

Gnome ≫ Evolution Version2.3.6.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	2.93%	0.852

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

https://usn.ubuntu.com/166-1/

http://marc.info/?l=full-disclosure&m=112368237712032&w=2

http://secunia.com/advisories/16394

http://secunia.com/advisories/19380

http://www.debian.org/security/2006/dsa-1016

http://www.mandriva.com/security/advisories?name=MDKSA-2005:141

http://www.novell.com/linux/security/advisories/2005_54_evolution.html

http://www.redhat.com/archives/fedora-announce-list/2005-August/msg00031.html

http://www.redhat.com/support/errata/RHSA-2005-267.html

http://www.securityfocus.com/archive/1/407789

http://www.securityfocus.com/bid/14532

http://www.sitic.se/eng/advisories_and_recommendations/sa05-001.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9553

https://nvd.nist.gov/vuln/detail/CVE-2005-2549

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-2549

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-2549

EUVD