CVSS: 9.1EPSS: 0%CPEs: 16EXPL: 0CVE-2006-2920
https://notcve.org/view.php?id=CVE-2006-2920
09 Jun 2006 — Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote attackers to bypass the URI check functionality and makes it easier to conduct phishing attacks via a URI that begins with a space character. • http://secunia.com/advisories/20476 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 3%CPEs: 27EXPL: 0CVE-2005-0667
https://notcve.org/view.php?id=CVE-2005-0667
07 Mar 2005 — Buffer overflow in Sylpheed before 1.0.3 and other versions before 1.9.5 allows remote attackers to execute arbitrary code via an e-mail message with certain headers containing non-ASCII characters that are not properly handled when the user replies to the message. • http://secunia.com/advisories/14491 •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2003-0852
https://notcve.org/view.php?id=CVE-2003-0852
25 Oct 2003 — Format string vulnerability in send_message.c for Sylpheed-claws 0.9.4 through 0.9.6 allows remote SMTP servers to cause a denial of service (crash) in sylpheed via format strings in an error message. Vulnerabilidad de cadena de formato en send_message.c de Sylpheed-claws 0.9.4 a 0.9.6a permite a servidores SMTP remotos causar una denegación (caída) en sylpheed mediante cadenas de formato en un mensaje de error. • http://lists.grok.org.uk/pipermail/full-disclosure/2003-October/012542.html •