Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2789

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-2789
Last Modified 02 Apr 2010 03:56:12
Published 02 Jun 2006 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-2789

Summary

Evolution 2.2.x and 2.3.x in GNOME 2.7 and 2.8, when "load images if sender in addressbook" is enabled, allows remote attackers to cause a denial of service (persistent crash) via a crafted "From" header that triggers an assert error in camel-internet-address.c when a null pointer is used.

Vulnerable Systems

Application

  • Gnome Evolution 2.3.1

  • Gnome Evolution 2.3.2

  • Gnome Evolution 2.3.3

  • Gnome Evolution 2.3.4

  • Gnome Evolution 2.3.5

  • Gnome Evolution 2.3.6

  • Gnome Evolution 2.3.6.1

  • Gnome Evolution 2.3.7


References

BID - 18212

CONFIRM - http://bugzilla.gnome.org/show_bug.cgi?id=311440

CONFIRM - http://bugzilla.gnome.org/show_bug.cgi?id=309453

MANDRIVA - MDKSA-2006:094


Last Updated: 27 May 2016 10:42:46