CVE-2005-4828

Published: Dec 31, 2005Modified: Apr 16, 2026

6.4

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:P

Exploitability: 10.0 / Impact: 4.9

Source: NVD

Description

Kolab Server 2.0.0 and 2.0.1 does not properly handle when a large email is sent with a "." in the wrong place, which causes kolabfilter to add another ".", which might break clear-text signatures and attachments. NOTE: it is not clear whether this issue crosses privilege boundaries, so this might not be a vulnerability.

Affected (2)

Products: Kolab: Kolab Groupware Server

1 product

Kolab Groupware Server

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Kolab Kolab Groupware Server	Version 2.0.0
Kolab Kolab Groupware Server	Version 2.0.1

References (6)

http://kolab.org/security/kolab-vendor-notice-07.txt

Source: cve@mitre.org

Exploit

http://www.mandriva.com/security/advisories?name=MDKSA-2006:013

Source: cve@mitre.org

http://www.osvdb.org/22538

Source: cve@mitre.org

http://kolab.org/security/kolab-vendor-notice-07.txt

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.mandriva.com/security/advisories?name=MDKSA-2006:013

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/22538

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.