Buffer overflow in Sylpheed before 1.0.3 and other versions before 1.9.5 allows remote attackers to execute arbitrary code via an e-mail message with certain headers containing non-ASCII characters that are not properly handled when the user replies to the message.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Sylpheed | Sylpheed | 0.8.11 (including) | 0.8.11 (including) |
| Sylpheed | Sylpheed | 0.9.4 (including) | 0.9.4 (including) |
| Sylpheed | Sylpheed | 0.9.5 (including) | 0.9.5 (including) |
| Sylpheed | Sylpheed | 0.9.6 (including) | 0.9.6 (including) |
| Sylpheed | Sylpheed | 0.9.7 (including) | 0.9.7 (including) |
| Sylpheed | Sylpheed | 0.9.8 (including) | 0.9.8 (including) |
| Sylpheed | Sylpheed | 0.9.9 (including) | 0.9.9 (including) |
| Sylpheed | Sylpheed | 0.9.10 (including) | 0.9.10 (including) |
| Sylpheed | Sylpheed | 0.9.11 (including) | 0.9.11 (including) |
| Sylpheed | Sylpheed | 0.9.12 (including) | 0.9.12 (including) |
| Sylpheed | Sylpheed | 0.9.99 (including) | 0.9.99 (including) |
| Sylpheed | Sylpheed | 1.0.0 (including) | 1.0.0 (including) |
| Sylpheed | Sylpheed | 1.0.1 (including) | 1.0.1 (including) |
| Sylpheed | Sylpheed | 1.0.2 (including) | 1.0.2 (including) |
| Sylpheed-claws | Sylpheed-claws | 1.0.2 (including) | 1.0.2 (including) |