FreeBSD Ports: Evolution Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://cvs.gnome.org/viewcvs/evolution/camel/camel-lock-helper.c?rev=1.7&view=log#rev1.5.74.1 http://www.vuxml.org/freebsd/b8943e61-6e68-11d9-a9e7-0001020eed82.html

Insight

The following package is affected: evolution CVE-2005-0102 Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier allows local users or remote malicious POP3 servers to execute arbitrary code via a length value of -1, which leads to a zero byte memory allocation and a buffer overflow.

Severity

Classification

CVE CVE-2005-0102
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

FreeBSD Ports: asterisk16
FreeBSD Ports: bugzilla, ja-bugzilla
exim -- two buffer overflow vulnerabilities
FreeBSD Ports: apache
FreeBSD Ports: chromium

FreeBSD Ports: evolution

Take action and discover your vulnerabilities