{"id":"CVE-2007-5007","details":"Stack-based buffer overflow in the ir_fetch_seq function in balsa before 2.3.20 might allow remote IMAP servers to execute arbitrary code via a long response to a FETCH command.","modified":"2026-04-10T03:39:16.072519Z","published":"2007-12-12T22:10:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/26947"},{"type":"ADVISORY","url":"http://secunia.com/advisories/26987"},{"type":"ADVISORY","url":"http://secunia.com/advisories/27272"},{"type":"ADVISORY","url":"http://www.novell.com/linux/security/advisories/2007_19_sr.html"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2007/3263"},{"type":"EVIDENCE","url":"http://bugs.gentoo.org/show_bug.cgi?id=193179"},{"type":"FIX","url":"http://mail.gnome.org/archives/balsa-list/2007-September/msg00010.html"},{"type":"FIX","url":"http://www.securityfocus.com/bid/25777"},{"type":"REPORT","url":"http://bugzilla.gnome.org/show_bug.cgi?id=474366"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=297581"},{"type":"WEB","url":"http://osvdb.org/40585"},{"type":"WEB","url":"http://www.gentoo.org/security/en/glsa/glsa-200710-17.xml"}],"schema_version":"1.7.5"}