Secunia Advisories
August 11, 2005

From Tony Bradley, CISSP-ISSAP, for About.com

Filed In:

Below are the Secunia Security Advisories rated as Highly Critical (or higher) from August 5, 2005.

Secunia Advisory 16394
GNOME Evolution Multiple Format String Vulnerabilities
- Criticality: High
- Description: Ulf Harnhammar has reported some vulnerabilities in Evolution, which can be exploited by malicious people to compromise a vulnerable system.
  1. A format string error when displaying full vCard information attached to an e-mail message can be exploited to execute arbitrary code.
    Successful exploitation requires that the user clicks on "Show Full vCard" or saves the vCard to an address book and then views it under the "Contacts" tab.
  2. A format string error exists when displaying specially crafted contact data retrieved from an LDAP server.
  3. A format string error exists when displaying specially crafted task list data retrieved from remote servers and when the user saves the task list data under the "Calendars" tab.
- Secunia Advisory: http://secunia.com/advisories/16394/
Secunia Advisory 16397
Ubuntu update for evolution
- Criticality: High
- Description: Ubuntu has issued an update for evolution. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
- Secunia Advisory: http://secunia.com/advisories/16397/
Secunia Advisory 16399
Red Hat update for ethereal
- Criticality: High
- Description: Red Hat has issued an update for ethereal. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
- Secunia Advisory: http://secunia.com/advisories/16399/

Explore Internet / Network Security

Must Reads

Secunia AdvisoriesAugust 11, 2005

Secunia Advisories
August 11, 2005