CVE-2008-0072
published 2008-03-06CVE-2008-0072: Format string vulnerability in the emf_multipart_encrypted function in mail/em-format.c in Evolution 2.12.3 and earlier allows remote attackers to execute…
medium6.8CVSS 3.1
AVNACMAuNCPIPAP
Format string vulnerability in the emf_multipart_encrypted function in mail/em-format.c in Evolution 2.12.3 and earlier allows remote attackers to execute arbitrary code via a crafted encrypted message, as demonstrated using the Version field.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | evolution | < evolution 2.12.3-1.1 (bookworm) | evolution 2.12.3-1.1 (bookworm) |
| gnome | evolution | <= 2.12.3 | — |
| gnome | evolution | >= 0 < 2.12.3-1.1 | 2.12.3-1.1 |
| gnome | evolution | >= 0 < 2.12.3-1.1 | 2.12.3-1.1 |
| gnome | evolution | >= 0 < 2.12.3-1.1 | 2.12.3-1.1 |
| gnome | evolution | >= 0 < 2.12.3-1.1 | 2.12.3-1.1 |
CVSS provenance
nvd6.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM