This page aggregates publicly disclosed CVE and security risk information related to ximian, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2005-0806 | Evolution 2.0.3 allows remote attackers to cause a denial of service (application crash or hang) via crafted messages, possibly involving charsets in attachment filenames. | [email protected] | 5.0 | 0.91% | 2005-05-02 | 2026-04-16 |
| CVE-2003-0300 | The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors. | [email protected] | 5.0 | 0.84% | 2003-06-16 | 2026-04-16 |
| CVE-2003-0296 | The IMAP Client for Evolution 1.2.4 allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large literal size values that cause either integer signedness errors or integer overflow errors. | [email protected] | 7.5 | 0.95% | 2003-06-16 | 2026-04-16 |
| CVE-2002-1471 | The camel component for Ximian Evolution 1.0.x and earlier does not verify certificates when it establishes a new SSL connection after previously verifying a certificate, which could allow remote attackers to monitor or modify sessions via a man-in-the-middle attack. | [email protected] | 5.0 | 0.38% | 2003-04-22 | 2026-04-16 |
| CVE-2003-0130 | The handle_image function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers to inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image. | [email protected] | 5.0 | 13.55% | 2003-03-24 | 2026-04-16 |
| CVE-2003-0129 | Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (memory consumption) via a mail message that is uuencoded multiple times. | [email protected] | 5.0 | 20.22% | 2003-03-24 | 2026-04-16 |
| CVE-2003-0128 | The try_uudecoding function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malicious uuencoded (UUE) header, possibly triggering a heap-based buffer overflow. | [email protected] | 5.0 | 34.52% | 2003-03-24 | 2026-04-16 |
| CVE-2002-1765 | Evolution 1.0.3 and 1.0.4 allows remote attackers to cause a denial of service (memory consumption and crash) via an email with a malformed MIME header. | [email protected] | 5.0 | 0.91% | 2002-12-31 | 2026-04-16 |