VYPR
Unrated severityNVD Advisory· Published Aug 27, 2007· Updated Jun 16, 2026

CVE-2007-2958

CVE-2007-2958

Description

Format string vulnerability in the inc_put_error function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:sylpheed-claws:sylpheed-claws:1.9.100:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:sylpheed-claws:sylpheed-claws:1.9.100:*:*:*:*:*:*:*
    • cpe:2.3:a:sylpheed-claws:sylpheed-claws:2.10.0:*:*:*:*:*:*:*
    • (no CPE)range: 1.9.100, 2.10.0
  • Sylpheed/Sylpheed2 versions
    cpe:2.3:a:sylpheed:sylpheed:2.4.4:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sylpheed:sylpheed:2.4.4:*:*:*:*:*:*:*
    • (no CPE)range: =2.4.4
  • Range: 1.9.100, 2.10.0

Patches

Vulnerability mechanics

References

14

News mentions

0

No linked articles in our index yet.