CVE-2007-1002 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-1002
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-1002

Description: Format string vulnerability in the write_html function in calendar/gui/e-cal-component-memo-preview.c in Evolution Shared Memo 2.8.2.1, and possibly earlier versions, allows user-assisted remote attackers to execute arbitrary code via format specifiers in the categories of a crafted shared memo.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/33106 UBUNTU http://www.ubuntu.com/usn/usn-442-1 SUSE http://www.novell.com/linux/security/advisories/2007_15_sr.html ST 1017808 SAID Secunia Advisory: SA25102 Secunia Advisory: SA24668 Secunia Advisory: SA24651 Secunia Advisory: SA24234 Secunia Advisory: SA25551 Secunia Advisory: SA25880 REDHAT MISC http://secunia.com/secunia_research/2007-44/advisory/ MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:070 GENTOO http://security.gentoo.org/glsa/glsa-200706-02.xml DEBIAN http://www.debian.org/security/2007/dsa-1325 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/464820/30/7170/threaded http://www.securityfocus.com/archive/1/archive/1/463406/100/0/threaded BID 23073

Return to the previous page.