CVSS: 5.4EPSS: 13%CPEs: 10EXPL: 2CVE-2003-0130 – Ximian Evolution 1.x - MIME image/* Content-Type Data Inclusion
https://notcve.org/view.php?id=CVE-2003-0130
21 Mar 2003 — The handle_image function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers to inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image. La función handle_image de mail-format.c en Ximian Evolution Mail User Agent 1.2.2 y anteriores no interpreta correctamente los caracteres 'escapados' de HTML, lo que permite a atacantes remotos la inyección arbitraria de datos y HTML mediante una cabece... • https://www.exploit-db.com/exploits/22371 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2002-1765
https://notcve.org/view.php?id=CVE-2002-1765
31 Dec 2002 — Evolution 1.0.3 and 1.0.4 allows remote attackers to cause a denial of service (memory consumption and crash) via an email with a malformed MIME header. • http://mail.gnome.org/archives/gnome-announce-list/2002-May/msg00020.html •