K Mail
Sign in to watchby KDE
CVEs (5)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2006-7139 | 0.04 | — | 0.09 | Mar 7, 2007 | Kmail 1.9.1 on KDE 3.5.2, with "Prefer HTML to Plain Text" enabled, allows remote attackers to cause a denial of service (crash) via an HTML e-mail with certain table and frameset tags that trigger a segmentation fault, possibly involving invalid free or delete operations. | ||
| CVE-1999-0735 | 0.03 | — | 0.00 | Jan 4, 2000 | KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories. | ||
| CVE-2007-1265 | 0.00 | — | 0.01 | Mar 6, 2007 | KMail 1.9.5 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents KMail from visually distinguishing between signed and unsigned portions of OpenPGP messages with multiple components, which allows remote attackers to forge the contents of a message without detection. | ||
| CVE-2002-0342 | 0.00 | — | 0.01 | Jun 25, 2002 | Kmail 1.2 on KDE 2.1.1 allows remote attackers to cause a denial of service (crash) via an email message whose body is approximately 55 K long. | ||
| CVE-2000-0481 | 0.00 | — | 0.01 | Jun 1, 1999 | Buffer overflow in KDE Kmail allows a remote attacker to cause a denial of service via an attachment with a long file name. |