Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2007-2958

Опубликовано: 27 авг. 2007
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8

Описание

Format string vulnerability in the inc_put_error function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies.

РелизСтатусПримечание
dapper

DNE

devel

released

2.10.0-3ubuntu3
edgy

DNE

feisty

DNE

gutsy

released

2.10.0-3ubuntu3
upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

released

2.2.4-1ubuntu1.1
devel

released

2.4.5-1
edgy

released

2.2.7-1ubuntu0.1
feisty

released

2.3.1-1~ubuntu1.1
gutsy

released

2.4.5-1
upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

released

1.0.5-2ubuntu0.1
devel

DNE

edgy

released

1.0.5-4ubuntu0.1
feisty

released

1.0.5-5.1ubuntu0.1
gutsy

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

released

2.1.1-1ubuntu1.1
devel

DNE

edgy

released

2.5.0~rc3-1ubuntu0.1
feisty

released

2.6.0-1.1ubuntu1.1
gutsy

DNE

upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 88%
0.04346
Низкий

6.8 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2007-2958

redhat
около 18 лет назад

Format string vulnerability in the inc_put_error function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies.

nvd логотип

CVE-2007-2958

nvd
около 18 лет назад

Format string vulnerability in the inc_put_error function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies.

debian логотип

CVE-2007-2958

debian
около 18 лет назад

Format string vulnerability in the inc_put_error function in src/inc.c ...

github логотип

GHSA-cjx9-q8g7-cf62

github
больше 3 лет назад

Format string vulnerability in the inc_put_error function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies.

EPSS

Процентиль: 88%
0.04346
Низкий

6.8 Medium

CVSS2