CVE-2003-0130

Ximian Evolution Mail User Agent <1.2.2 - XSS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-0130. PoCs published by Core Security.

AI-analyzed exploit summary This exploit demonstrates a MIME Content-Type validation flaw in Ximian Evolution, allowing arbitrary data embedding in image/* fields. It includes examples for heap corruption, policy bypass, and bonobo component invocation via crafted email messages.

Description

The handle_image function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers to inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Core Security · textremotelinux

https://www.exploit-db.com/exploits/22371

View Code ZIP pw:eip

This exploit demonstrates a MIME Content-Type validation flaw in Ximian Evolution, allowing arbitrary data embedding in image/* fields. It includes examples for heap corruption, policy bypass, and bonobo component invocation via crafted email messages.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: Ximian Evolution (versions prior to fix for CVE-2003-0130)

No auth needed

Prerequisites: Ability to send crafted email to target

MITRE ATT&CK