← CVECheck
HomeVulnerabilities

CVE-2003-0130 — MEDIUM severity vulnerability (The handle_image function in mail-format.c for Ximian Evolut)

The handle_image function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers to inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image.

CVE IDCVE-2003-0130
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2003-03-24
Last modified2026-04-16
DescriptionThe handle_image function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers to inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →