MidnightBSD

Advisories for sylpheed

CVE-2003-0300 MEDIUM

The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mozilla mozilla 1.3
mozilla mozilla 1.4
mutt mutt 1.4.1
stuart_parmenter balsa 2.0.10
ximian evolution 1.2.4
university_of_washington pine 4.53
qualcomm eudora 5.2.1
sylpheed sylpheed_email_client 0.8.11
microsoft outlook_express 6.00.2800.1106
CVE-2003-0852 MEDIUM

Format string vulnerability in send_message.c for Sylpheed-claws 0.9.4 through 0.9.6 allows remote SMTP servers to cause a denial of service (crash) in sylpheed via format strings in an error message.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sylpheed-claws sylpheed-claws 0.9.5
sylpheed-claws sylpheed-claws 0.9.4
sylpheed-claws sylpheed-claws 0.9.6
sylpheed sylpheed 0.9.5
sylpheed sylpheed 0.9.6
sylpheed sylpheed 0.9.4
CVE-2005-0667 MEDIUM

Buffer overflow in Sylpheed before 1.0.3 and other versions before 1.9.5 allows remote attackers to execute arbitrary code via an e-mail message with certain headers containing non-ASCII characters that are not properly handled when the user replies to the message.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
redhat fedora_core core_3.0
sylpheed sylpheed 0.9.10
sylpheed sylpheed 1.0.2
sylpheed-claws sylpheed-claws 1.0.2
altlinux alt_linux 2.3
redhat linux_advanced_workstation 2.1
sylpheed sylpheed 0.9.6
sylpheed sylpheed 0.9.12
sylpheed sylpheed 0.9.9
gentoo linux *
sylpheed sylpheed 0.8.11
sylpheed sylpheed 0.9.4
sylpheed sylpheed 0.9.7
sylpheed sylpheed 0.9.8
redhat enterprise_linux 2.1
sylpheed sylpheed 0.9.11
sylpheed sylpheed 1.0.1
sylpheed sylpheed 0.9.5
sylpheed sylpheed 0.9.99
sylpheed sylpheed 1.0.0
CVE-2005-0926 MEDIUM

Buffer overflow in Sylpheed before 1.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attachments with MIME-encoded file names.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sylpheed sylpheed 0.9.10
sylpheed sylpheed 1.0.2
sylpheed sylpheed 0.9.6
sylpheed sylpheed 0.9.12
sylpheed sylpheed 0.9.9
sylpheed sylpheed 0.8.11
sylpheed sylpheed 1.0.3
sylpheed sylpheed 0.9.4
sylpheed sylpheed 0.9.7
sylpheed sylpheed 0.9.8
sylpheed sylpheed 0.9.11
sylpheed sylpheed 1.0.1
sylpheed sylpheed 0.9.5
sylpheed sylpheed 1.0.0
CVE-2005-3354 MEDIUM

Stack-based buffer overflow in the ldif_get_line function in ldif.c of Sylpheed before 2.1.6 allows user-assisted attackers to execute arbitrary code by having local users import LDIF files with long lines.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
sylpheed sylpheed 0.9.10
sylpheed sylpheed 0.9.6
sylpheed sylpheed 2.0.1
sylpheed sylpheed 2.1.5
sylpheed sylpheed 0.9.9
sylpheed sylpheed 0.8.11
sylpheed sylpheed 1.0.4
sylpheed sylpheed 0.9.7
sylpheed sylpheed 2.1.4
sylpheed sylpheed 0.9.11
sylpheed sylpheed 2.1.2
sylpheed sylpheed 1.0.0
sylpheed sylpheed 1.0.2
sylpheed sylpheed 2.0
sylpheed sylpheed 2.1.3
sylpheed sylpheed 0.9.12
sylpheed sylpheed 1.0.3
sylpheed sylpheed 0.9.4
sylpheed sylpheed 0.9.8
sylpheed sylpheed 2.0.2
sylpheed sylpheed 2.1.1
sylpheed sylpheed 1.0.1
sylpheed sylpheed 0.9.5
sylpheed sylpheed 2.0.3
sylpheed sylpheed 2.1
CVE-2006-2920 LOW

Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote attackers to bypass the URI check functionality and makes it easier to conduct phishing attacks via a URI that begins with a space character.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
sylpheed sylpheed *
sylpheed-claws sylpheed-claws 0.9.5
sylpheed-claws sylpheed-claws 0.9.6
sylpheed-claws sylpheed-claws 1.0.2
sylpheed sylpheed 2.0
sylpheed sylpheed 2.1.3
sylpheed sylpheed 2.0.1
sylpheed sylpheed 2.1.5
sylpheed sylpheed 2.1.4
sylpheed sylpheed 2.0.2
sylpheed sylpheed 2.1.1
sylpheed-claws sylpheed-claws 0.9.4
sylpheed-claws sylpheed-claws *
sylpheed sylpheed 2.1.2
sylpheed sylpheed 2.0.3
sylpheed sylpheed 2.1