CVSS: 9.8EPSS: 7%CPEs: 10EXPL: 0CVE-2005-2549
https://notcve.org/view.php?id=CVE-2005-2549
12 Aug 2005 — Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) full vCard data, (2) contact data from remote LDAP servers, or (3) task list data from remote servers. • http://marc.info/?l=full-disclosure&m=112368237712032&w=2 •
CVSS: 9.8EPSS: 8%CPEs: 11EXPL: 0CVE-2005-2550
https://notcve.org/view.php?id=CVE-2005-2550
12 Aug 2005 — Format string vulnerability in Evolution 1.4 through 2.3.6.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the calendar entries such as task lists, which are not properly handled when the user selects the Calendars tab. • http://marc.info/?l=full-disclosure&m=112368237712032&w=2 •
CVSS: 9.8EPSS: 1%CPEs: 2EXPL: 0CVE-2005-0102
https://notcve.org/view.php?id=CVE-2005-0102
24 Jan 2005 — Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier allows local users or remote malicious POP3 servers to execute arbitrary code via a length value of -1, which leads to a zero byte memory allocation and a buffer overflow. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000925 • CWE-190: Integer Overflow or Wraparound •