cbcvebase.
CVE-2005-0667
published 2005-03-07

CVE-2005-0667: Buffer overflow in Sylpheed before 1.0.3 and other versions before 1.9.5 allows remote attackers to execute arbitrary code via an e-mail message with certain…

PriorityP423medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EPSS
3.25%
86.8th percentile
Buffer overflow in Sylpheed before 1.0.3 and other versions before 1.9.5 allows remote attackers to execute arbitrary code via an e-mail message with certain headers containing non-ASCII characters that are not properly handled when the user replies to the message.

Affected

23 ranges
VendorProductVersion rangeFixed in
altlinuxalt_linux
debiansylpheed< sylpheed 1.0.3-1 (bookworm)sylpheed 1.0.3-1 (bookworm)
redhatenterprise_linux
redhatfedora_core
redhatlinux_advanced_workstation
sylpheed-clawssylpheed-claws
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed
sylpheedsylpheed>= 0 < 1.0.3-11.0.3-1
sylpheedsylpheed>= 0 < 1.0.3-11.0.3-1
sylpheedsylpheed>= 0 < 1.0.3-11.0.3-1

CVSS provenance

nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
osv5.1MEDIUM
vendor_debian5.1MEDIUM
vendor_redhat5.1MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.