CVE-2008-1108 - OpenCVE

Buffer overflow in Evolution 2.22.1, when the ITip Formatter plugin is disabled, allows remote attackers to execute arbitrary code via a long timezone string in an iCalendar attachment.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:H/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Gnome	Evolution

Configuration 1 [-]

cpe:2.3:a:gnome:evolution:2.2.1:*:*:*:*:*:*:*

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00003.html
http://secunia.com/advisories/30298	Vendor Advisory
http://secunia.com/advisories/30527
http://secunia.com/advisories/30536
http://secunia.com/advisories/30564
http://secunia.com/advisories/30571
http://secunia.com/advisories/30702
http://secunia.com/advisories/30716
http://secunia.com/secunia_research/2008-22/advisory/
http://security.gentoo.org/glsa/glsa-200806-06.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2008:111
http://www.redhat.com/support/errata/RHSA-2008-0514.html
http://www.redhat.com/support/errata/RHSA-2008-0515.html
http://www.redhat.com/support/errata/RHSA-2008-0516.html
http://www.redhat.com/support/errata/RHSA-2008-0517.html
http://www.securityfocus.com/bid/29527
http://www.securitytracker.com/id?1020169
http://www.ubuntu.com/usn/usn-615-1
http://www.vupen.com/english/advisories/2008/1732/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42824
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10471
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00157.html
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00178.html
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00179.html

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: flexera

Published: 2008-06-04T20:00:00

Updated: 2017-09-28T12:57:01

Reserved: 2008-02-29T00:00:00

Link: CVE-2008-1108

JSON object: View

NVD Information

Status : Modified

Published: 2008-06-04T20:32:00.000

Modified: 2017-09-29T01:30:33.723

Link: CVE-2008-1108

JSON object: View

Redhat Information

No data.

CWE

CWE-119

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-06-04T00:00:00", "descriptions": [{"lang": "en", "value": "Buffer overflow in Evolution 2.22.1, when the ITip Formatter plugin is disabled, allows remote attackers to execute arbitrary code via a long timezone string in an iCalendar attachment."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-28T12:57:01", "orgId": "44d08088-2bea-4760-83a6-1e9be26b15ab", "shortName": "flexera"}, "references": [{"name": "FEDORA-2008-5018", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00179.html"}, {"name": "ADV-2008-1732", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/1732/references"}, {"name": "30298", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30298"}, {"name": "FEDORA-2008-5016", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00178.html"}, {"name": "30564", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30564"}, {"name": "SUSE-SA:2008:028", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00003.html"}, {"name": "RHSA-2008:0516", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2008-0516.html"}, {"name": "RHSA-2008:0515", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2008-0515.html"}, {"name": "GLSA-200806-06", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-200806-06.xml"}, {"name": "30571", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30571"}, {"name": "oval:org.mitre.oval:def:10471", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10471"}, {"name": "FEDORA-2008-4990", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00157.html"}, {"name": "RHSA-2008:0514", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2008-0514.html"}, {"name": "30716", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30716"}, {"tags": ["x_refsource_MISC"], "url": "http://secunia.com/secunia_research/2008-22/advisory/"}, {"name": "30536", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30536"}, {"name": "30527", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30527"}, {"name": "29527", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/29527"}, {"name": "1020169", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1020169"}, {"name": "30702", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30702"}, {"name": "MDVSA-2008:111", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:111"}, {"name": "RHSA-2008:0517", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2008-0517.html"}, {"name": "USN-615-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/usn-615-1"}, {"name": "evolution-icalendar-bo(42824)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42824"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "PSIRT-CNA@flexerasoftware.com", "ID": "CVE-2008-1108", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in Evolution 2.22.1, when the ITip Formatter plugin is disabled, allows remote attackers to execute arbitrary code via a long timezone string in an iCalendar attachment."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "FEDORA-2008-5018", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00179.html"}, {"name": "ADV-2008-1732", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/1732/references"}, {"name": "30298", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30298"}, {"name": "FEDORA-2008-5016", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00178.html"}, {"name": "30564", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30564"}, {"name": "SUSE-SA:2008:028", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00003.html"}, {"name": "RHSA-2008:0516", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2008-0516.html"}, {"name": "RHSA-2008:0515", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2008-0515.html"}, {"name": "GLSA-200806-06", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200806-06.xml"}, {"name": "30571", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30571"}, {"name": "oval:org.mitre.oval:def:10471", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10471"}, {"name": "FEDORA-2008-4990", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00157.html"}, {"name": "RHSA-2008:0514", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2008-0514.html"}, {"name": "30716", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30716"}, {"name": "http://secunia.com/secunia_research/2008-22/advisory/", "refsource": "MISC", "url": "http://secunia.com/secunia_research/2008-22/advisory/"}, {"name": "30536", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30536"}, {"name": "30527", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30527"}, {"name": "29527", "refsource": "BID", "url": "http://www.securityfocus.com/bid/29527"}, {"name": "1020169", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1020169"}, {"name": "30702", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30702"}, {"name": "MDVSA-2008:111", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:111"}, {"name": "RHSA-2008:0517", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2008-0517.html"}, {"name": "USN-615-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/usn-615-1"}, {"name": "evolution-icalendar-bo(42824)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42824"}]}}}}, "cveMetadata": {"assignerOrgId": "44d08088-2bea-4760-83a6-1e9be26b15ab", "assignerShortName": "flexera", "cveId": "CVE-2008-1108", "datePublished": "2008-06-04T20:00:00", "dateReserved": "2008-02-29T00:00:00", "dateUpdated": "2017-09-28T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:gnome:evolution:2.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "47D66360-0009-4D6D-B04B-A2A1366AD614", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in Evolution 2.22.1, when the ITip Formatter plugin is disabled, allows remote attackers to execute arbitrary code via a long timezone string in an iCalendar attachment."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en Evolution 2.22.1, cuando el plugin ITip Formates est\u00e1 desactivado, permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de una cadena \"timezone\" larga en un adjunto iCalendar."}], "id": "CVE-2008-1108", "lastModified": "2017-09-29T01:30:33.723", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-06-04T20:32:00.000", "references": [{"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00003.html"}, {"source": "PSIRT-CNA@flexerasoftware.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/30298"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://secunia.com/advisories/30527"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://secunia.com/advisories/30536"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://secunia.com/advisories/30564"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://secunia.com/advisories/30571"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://secunia.com/advisories/30702"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://secunia.com/advisories/30716"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://secunia.com/secunia_research/2008-22/advisory/"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://security.gentoo.org/glsa/glsa-200806-06.xml"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:111"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.redhat.com/support/errata/RHSA-2008-0514.html"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.redhat.com/support/errata/RHSA-2008-0515.html"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.redhat.com/support/errata/RHSA-2008-0516.html"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.redhat.com/support/errata/RHSA-2008-0517.html"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.securityfocus.com/bid/29527"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.securitytracker.com/id?1020169"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.ubuntu.com/usn/usn-615-1"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "http://www.vupen.com/english/advisories/2008/1732/references"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42824"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10471"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00157.html"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00178.html"}, {"source": "PSIRT-CNA@flexerasoftware.com", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00179.html"}], "sourceIdentifier": "PSIRT-CNA@flexerasoftware.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}