CVE-2007-2958 - OpenCVE

Format string vulnerability in the inc_put_error function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Sylpheed-claws	Sylpheed-claws
Sylpheed	Sylpheed

Configuration 1 [-]

OR	cpe:2.3:a:sylpheed:sylpheed:2.4.4:::::::*
	cpe:2.3:a:sylpheed-claws:sylpheed-claws:1.9.100:::::::*
	cpe:2.3:a:sylpheed-claws:sylpheed-claws:2.10.0:::::::*

References

Link	Resource
http://bugs.gentoo.org/show_bug.cgi?id=190104
http://osvdb.org/40184
http://secunia.com/advisories/26550	Patch Vendor Advisory
http://secunia.com/advisories/26610
http://secunia.com/advisories/27229
http://secunia.com/advisories/27379
http://secunia.com/secunia_research/2007-70/advisory/	Patch Vendor Advisory
http://security.gentoo.org/glsa/glsa-200710-29.xml
http://www.novell.com/linux/security/advisories/2007_20_sr.html
http://www.securityfocus.com/bid/25430
http://www.vupen.com/english/advisories/2007/2971
https://bugzilla.redhat.com/show_bug.cgi?id=254121
https://exchange.xforce.ibmcloud.com/vulnerabilities/36238
https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00077.html

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: flexera

Published: 2007-08-27T17:00:00

Updated: 2017-07-28T12:57:01

Reserved: 2007-05-31T00:00:00

Link: CVE-2007-2958

JSON object: View

NVD Information

Status : Modified

Published: 2007-08-27T17:17:00.000

Modified: 2017-07-29T01:31:52.550

Link: CVE-2007-2958

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-08-24T00:00:00", "descriptions": [{"lang": "en", "value": "Format string vulnerability in the inc_put_error function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "44d08088-2bea-4760-83a6-1e9be26b15ab", "shortName": "flexera"}, "references": [{"name": "26550", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/26550"}, {"name": "ADV-2007-2971", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/2971"}, {"name": "26610", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/26610"}, {"tags": ["x_refsource_MISC"], "url": "http://secunia.com/secunia_research/2007-70/advisory/"}, {"name": "40184", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/40184"}, {"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=254121"}, {"name": "27229", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/27229"}, {"name": "27379", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/27379"}, {"name": "sylpheed-incputerror-format-string(36238)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36238"}, {"name": "FEDORA-2007-2009", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00077.html"}, {"name": "GLSA-200710-29", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-200710-29.xml"}, {"name": "25430", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/25430"}, {"name": "SUSE-SR:2007:020", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://www.novell.com/linux/security/advisories/2007_20_sr.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://bugs.gentoo.org/show_bug.cgi?id=190104"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "PSIRT-CNA@flexerasoftware.com", "ID": "CVE-2007-2958", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Format string vulnerability in the inc_put_error function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "26550", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26550"}, {"name": "ADV-2007-2971", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/2971"}, {"name": "26610", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26610"}, {"name": "http://secunia.com/secunia_research/2007-70/advisory/", "refsource": "MISC", "url": "http://secunia.com/secunia_research/2007-70/advisory/"}, {"name": "40184", "refsource": "OSVDB", "url": "http://osvdb.org/40184"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=254121", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=254121"}, {"name": "27229", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27229"}, {"name": "27379", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27379"}, {"name": "sylpheed-incputerror-format-string(36238)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36238"}, {"name": "FEDORA-2007-2009", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00077.html"}, {"name": "GLSA-200710-29", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200710-29.xml"}, {"name": "25430", "refsource": "BID", "url": "http://www.securityfocus.com/bid/25430"}, {"name": "SUSE-SR:2007:020", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2007_20_sr.html"}, {"name": "http://bugs.gentoo.org/show_bug.cgi?id=190104", "refsource": "CONFIRM", "url": "http://bugs.gentoo.org/show_bug.cgi?id=190104"}]}}}}, "cveMetadata": {"assignerOrgId": "44d08088-2bea-4760-83a6-1e9be26b15ab", "assignerShortName": "flexera", "cveId": "CVE-2007-2958", "datePublished": "2007-08-27T17:00:00", "dateReserved": "2007-05-31T00:00:00", "dateUpdated": "2017-07-28T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sylpheed:sylpheed:2.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "A0B9CA4A-A38F-416E-8932-E12A0EB3F2C8", "vulnerable": true}, {"criteria": "cpe:2.3:a:sylpheed-claws:sylpheed-claws:1.9.100:*:*:*:*:*:*:*", "matchCriteriaId": "F114852D-4966-424F-883B-3223B2D6CB96", "vulnerable": true}, {"criteria": "cpe:2.3:a:sylpheed-claws:sylpheed-claws:2.10.0:*:*:*:*:*:*:*", "matchCriteriaId": "B33723FF-72E4-4CBF-814A-CBFB17BD87AB", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Format string vulnerability in the inc_put_error function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies."}, {"lang": "es", "value": "Vulnerabilidad de formato de cadena en la funci\u00f3n inc_put_error en src/inc.c en Sylpheed 2.4.4, y Sylpheed-Claws (Claws Mail) 1.9.100 y 2.10.0, permite a servidores POP3 remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de especificaciones de formato de cadena en respuestas manipuladas."}], "id": "CVE-2007-2958", "lastModified": "2017-07-29T01:31:52.550", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2007-08-27T17:17:00.000", "references": [{"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://bugs.gentoo.org/show_bug.cgi?id=190104"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://osvdb.org/40184"}, {"source": "PSIRT-CNA@flexerasoftware.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/26550"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://secunia.com/advisories/26610"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://secunia.com/advisories/27229"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://secunia.com/advisories/27379"}, {"source": "PSIRT-CNA@flexerasoftware.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/secunia_research/2007-70/advisory/"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://security.gentoo.org/glsa/glsa-200710-29.xml"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.novell.com/linux/security/advisories/2007_20_sr.html"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.securityfocus.com/bid/25430"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.vupen.com/english/advisories/2007/2971"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=254121"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36238"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00077.html"}], "sourceIdentifier": "PSIRT-CNA@flexerasoftware.com", "vendorComments": [{"comment": "Not vulnerable. This issue did not affect version of Sylpheed as shipped with Red Hat Enterprise Linux 2.1. Sylpheed and claws-mail are not shipped with Red Hat Enterprise Linux 3, 4, or 5.\n", "lastModified": "2007-08-28T00:00:00", "organization": "Red Hat"}], "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}