Vulnerability in Gnome Evolution

CVE-2008-0072

Format string vulnerability in the emf_multipart_encrypted function in mail/em-format.c in Evolution 2.12.3 and earlier allows remote attackers to execute arbitrary code via a crafted encrypted message, as demonstrated using the Version fi…

EPSS: 0.047 (90.7th percentile) — read the EPSS interpretation.

Affected products

Gnome Evolution
Linux Linux_kernel
N/a — versions n/a

Weakness classification (CWE)

CWE-134 — Use of Externally-Controlled Format String

References

PSIRT-CNA@flexerasoftware.com (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
PSIRT-CNA@flexerasoftware.com (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
PSIRT-CNA@flexerasoftware.com (vendor-advisory, Patch, x_refsource_DEBIAN)
PSIRT-CNA@flexerasoftware.com (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
PSIRT-CNA@flexerasoftware.com (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
PSIRT-CNA@flexerasoftware.com (US Government Resource, x_refsource_CERT-VN, third-party-advisory)
PSIRT-CNA@flexerasoftware.com (x_refsource_UBUNTU, vendor-advisory)
PSIRT-CNA@flexerasoftware.com (vendor-advisory, x_refsource_SUSE)
PSIRT-CNA@flexerasoftware.com (mailing-list, x_refsource_BUGTRAQ)
PSIRT-CNA@flexerasoftware.com (signature, x_refsource_OVAL, vdb-entry)