The try_uudecoding function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malicious uuencoded (UUE) header, possibly triggering a heap-based buffer overflow.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Evolution | Ximian | 1.0.3 (including) | 1.0.3 (including) |
Evolution | Ximian | 1.0.4 (including) | 1.0.4 (including) |
Evolution | Ximian | 1.0.5 (including) | 1.0.5 (including) |
Evolution | Ximian | 1.0.6 (including) | 1.0.6 (including) |
Evolution | Ximian | 1.0.7 (including) | 1.0.7 (including) |
Evolution | Ximian | 1.0.8 (including) | 1.0.8 (including) |
Evolution | Ximian | 1.1.1 (including) | 1.1.1 (including) |
Evolution | Ximian | 1.2 (including) | 1.2 (including) |
Evolution | Ximian | 1.2.1 (including) | 1.2.1 (including) |
Evolution | Ximian | 1.2.2 (including) | 1.2.2 (including) |
Red Hat Linux 7.3 | RedHat | * | |
Red Hat Linux 8.0 | RedHat | * | |
Red Hat Linux 9 | RedHat | * |