CVE-2007-3257
published 2007-06-19CVE-2007-3257: Camel (camel-imap-folder.c) in the mailer component for Evolution Data Server 1.11 allows remote IMAP servers to execute arbitrary code via a negative SEQUENCE…
medium6.8CVSS 3.1
AVNACMAuNCPIPAP
Camel (camel-imap-folder.c) in the mailer component for Evolution Data Server 1.11 allows remote IMAP servers to execute arbitrary code via a negative SEQUENCE value in GData, which is used as an array index.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | evolution | < evolution 2.12.0-1 (bookworm) | evolution 2.12.0-1 (bookworm) |
| debian | evolution-data-server | < evolution 2.12.0-1 (bookworm) | evolution 2.12.0-1 (bookworm) |
| gnome | evolution | — | — |
| gnome | evolution | >= 0 < 2.12.0-1 | 2.12.0-1 |
| gnome | evolution | >= 0 < 2.12.0-1 | 2.12.0-1 |
| gnome | evolution | >= 0 < 2.12.0-1 | 2.12.0-1 |
| gnome | evolution | >= 0 < 2.12.0-1 | 2.12.0-1 |
| gnome | evolution-data-server | >= 0 < 1.10.2-2 | 1.10.2-2 |
| gnome | evolution-data-server | >= 0 < 1.10.2-2 | 1.10.2-2 |
| gnome | evolution-data-server | >= 0 < 1.10.2-2 | 1.10.2-2 |
| gnome | evolution-data-server | >= 0 < 1.10.2-2 | 1.10.2-2 |
CVSS provenance
nvd6.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM