CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-8708

Stack-based buffer overflow in the conv_euctojis function in codeconv.c in Claws Mail 3.13.1 allows remote attackers to have unspecified impact via a crafted email, involving Japanese character set conversion. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8614.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 76.0%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 7.5

References

http://www.openwall.com/lists/oss-security/2015/12/31/1
https://security.gentoo.org/glsa/201606-11
http://www.openwall.com/lists/oss-security/2015/12/31/1
https://security.gentoo.org/glsa/201606-11

Products affected by CVE-2015-8708

Claws-Mail » Claws-Mail » Version: 3.13.1

cpe:2.3:a:claws-mail:claws-mail:3.13.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-8708

Products

Pricing

Contact Us