CVE-2005-3354
Sylpheed - Stack-based Buffer Overflow via LDIF File Import
Title source: llmDescription
Stack-based buffer overflow in the ldif_get_line function in ldif.c of Sylpheed before 2.1.6 allows user-assisted attackers to execute arbitrary code by having local users import LDIF files with long lines.
References (14)
Core 14
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/15363
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17831/
Patch, Vendor Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200511-13.xml
Vendor Advisory vendor-advisory
x_refsource_suse
http://www.novell.com/linux/security/advisories/2005_28_sr.html
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2005/dsa-906
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17492
Various Sources x_refsource_confirm
http://sylpheed.good-day.net/en/news.html
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2360
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17678
Various Sources vendor-advisory
x_refsource_fedora
http://www.xatrix.org/advisory.php?s=7282
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17540/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/23028
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17525/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/20675
Scores
EPSS
0.0379
EPSS Percentile
88.8%
Details
CWE
CWE-119
Status
published
Products (25)
sylpheed/sylpheed
0.8.11
sylpheed/sylpheed
0.9.4
sylpheed/sylpheed
0.9.5
sylpheed/sylpheed
0.9.6
sylpheed/sylpheed
0.9.7
sylpheed/sylpheed
0.9.8
sylpheed/sylpheed
0.9.9
sylpheed/sylpheed
0.9.10
sylpheed/sylpheed
0.9.11
sylpheed/sylpheed
0.9.12
... and 15 more
Published
Nov 20, 2005
Tracked Since
Feb 18, 2026