Remote Code Execution via UUE Header in Ximian Evolution Mail User Agent 1.2.2 and Earlier

CVE-2003-0128 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The try_uudecoding function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malicious uuencoded (UUE) header, possibly triggering a heap-based buffer overflow.

Learn more about our User Device Pen Test.