CVE-2005-0102

MITRE NVD CVE.ORG Print: PDF PDF

Summary

CVECVE-2005-0102
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2005-01-24 05:00:00 UTC
Updated2018-10-03 21:29:00 UTC
DescriptionInteger overflow in camel-lock-helper in Evolution 2.0.2 and earlier allows local users or remote malicious POP3 servers to execute arbitrary code via a length value of -1, which leads to a zero byte memory allocation and a buffer overflow.

Risk And Classification

Problem Types: NVD-CWE-Other

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Application Ximian Evolution 1.2.2 All All All
Application Ximian Evolution 1.2.3 All All All
Application Ximian Evolution 1.2.4 All All All
Application Ximian Evolution 1.3.2_beta All All All
Application Ximian Evolution 1.2.2 All All All
Application Ximian Evolution 1.2.3 All All All
Application Ximian Evolution 1.2.4 All All All
Application Ximian Evolution 1.3.2_beta All All All

References

ReferenceSourceLinkTags
rhn.redhat.com | Red Hat Support REDHAT www.redhat.com
Advisories - Mandriva MANDRAKE www.mandriva.com
Novell Evolution Camel-Lock-Helper Application Remote Integer Overflow Vulnerability BID www.securityfocus.com Patch, Vendor Advisory
SecurityTracker.com Archives - Evolution Integer Overflow in camel-lock-helper May Let Local and Remote Users Execute Arbitrary Code SECTRACK securitytracker.com
Secunia - Advisories - Evolution camel-lock-helper Integer Overflow Vulnerability SECUNIA secunia.com
Gentoo Linux Documentation -- Evolution: Integer overflow in camel-lock-helper GENTOO security.gentoo.org Patch, Vendor Advisory
USN-69-1: Evolution vulnerability | Ubuntu security notices UBUNTU usn.ubuntu.com
IBM X-Force Exchange XF exchange.xforce.ibmcloud.com
Debian -- Security Information -- DSA-673-1 evolution DEBIAN www.debian.org Patch, Vendor Advisory
Support REDHAT www.redhat.com Patch, Vendor Advisory
Repository / Oval Repository OVAL oval.cisecurity.org
Home - Conectiva CONECTIVA distro.conectiva.com.br Patch, Vendor Advisory
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis

Legacy QID Mappings

  • 690262 Free Berkeley Software Distribution (FreeBSD) Security Update for evolution (b8943e61-6e68-11d9-a9e7-0001020eed82)
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report