VYPR
Unrated severityNVD Advisory· Published Mar 24, 2003· Updated Jun 16, 2026

CVE-2003-0130

CVE-2003-0130

Description

The handle_image function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers to inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • Ximian/Evolution10 versions
    cpe:2.3:a:ximian:evolution:1.0.3:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:ximian:evolution:1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ximian:evolution:1.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ximian:evolution:1.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ximian:evolution:1.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:ximian:evolution:1.0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:ximian:evolution:1.0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:ximian:evolution:1.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ximian:evolution:1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ximian:evolution:1.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ximian:evolution:1.2.2:*:*:*:*:*:*:*
  • Range: <=1.2.2

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.