5

CVE-2006-0528

Exploit

EPSS 5.11%
Published 02.02.2006 11:02:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

The cairo library (libcairo), as used in GNOME Evolution and possibly other products, allows remote attackers to cause a denial of service (persistent client crash) via an attached text file that contains "Content-Disposition: inline" in the header, and a very long line in the body, which causes the client to repeatedly crash until the e-mail message is manually removed, possibly due to a buffer overflow, as demonstrated using an XML attachment.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Gnome ≫ Evolution Version2.3.1

Gnome ≫ Evolution Version2.3.2

Gnome ≫ Evolution Version2.3.3

Gnome ≫ Evolution Version2.3.4

Gnome ≫ Evolution Version2.3.5

Gnome ≫ Evolution Version2.3.6

Gnome ≫ Evolution Version2.3.6.1

Gnome ≫ Evolution Version2.3.7

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	5.11%	0.888

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

http://archives.neohapsis.com/archives/fulldisclosure/2006-01/0925.html

http://secunia.com/advisories/19504

Vendor Advisory

http://securityreason.com/securityalert/610

http://www.mandriva.com/security/advisories?name=MDKSA-2006:057

http://www.novell.com/linux/security/advisories/2006_07_sr.html

Vendor Advisory

http://www.securityfocus.com/bid/16408

Exploit

https://usn.ubuntu.com/265-1/

https://nvd.nist.gov/vuln/detail/CVE-2006-0528

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-0528

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-0528

EUVD