Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Kde Subscribe
Filtered by product K-mail
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-1265 1 Kde 1 K-mail 2018-10-16 7.8 HIGH N/A
KMail 1.9.5 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents KMail from visually distinguishing between signed and unsigned portions of OpenPGP messages with multiple components, which allows remote attackers to forge the contents of a message without detection.
CVE-2006-7139 1 Kde 2 K-mail, Kde 2018-10-16 2.6 LOW N/A
Kmail 1.9.1 on KDE 3.5.2, with "Prefer HTML to Plain Text" enabled, allows remote attackers to cause a denial of service (crash) via an HTML e-mail with certain table and frameset tags that trigger a segmentation fault, possibly involving invalid free or delete operations.
CVE-2000-0481 1 Kde 1 K-mail 2017-10-09 5.0 MEDIUM N/A
Buffer overflow in KDE Kmail allows a remote attacker to cause a denial of service via an attachment with a long file name.
CVE-2002-0342 1 Kde 1 K-mail 2016-10-17 5.0 MEDIUM N/A
Kmail 1.2 on KDE 2.1.1 allows remote attackers to cause a denial of service (crash) via an email message whose body is approximately 55 K long.
CVE-1999-0735 1 Kde 1 K-mail 2008-09-09 4.6 MEDIUM N/A
KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories.