CVE-2006-0528
published 2006-02-02CVE-2006-0528: The cairo library (libcairo), as used in GNOME Evolution and possibly other products, allows remote attackers to cause a denial of service (persistent client…
medium5CVSS 3.1
AVNACLAuNCNINAP
EXPLOIT
The cairo library (libcairo), as used in GNOME Evolution and possibly other products, allows remote attackers to cause a denial of service (persistent client crash) via an attached text file that contains "Content-Disposition: inline" in the header, and a very long line in the body, which causes the client to repeatedly crash until the e-mail message is manually removed, possibly due to a buffer overflow, as demonstrated using an XML attachment.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | evolution | < evolution 2.2.3-4 (bookworm) | evolution 2.2.3-4 (bookworm) |
| gnome | evolution | — | — |
| gnome | evolution | — | — |
| gnome | evolution | — | — |
| gnome | evolution | — | — |
| gnome | evolution | — | — |
| gnome | evolution | — | — |
| gnome | evolution | — | — |
| gnome | evolution | — | — |
| gnome | evolution | >= 0 < 2.2.3-4 | 2.2.3-4 |
| gnome | evolution | >= 0 < 2.2.3-4 | 2.2.3-4 |
| gnome | evolution | >= 0 < 2.2.3-4 | 2.2.3-4 |
| gnome | evolution | >= 0 < 2.2.3-4 | 2.2.3-4 |
CVSS provenance
nvd5.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM