Описание
Cybozu Garoon 3.x and 4.x before 4.2.0 does not properly restrict loading of IMG elements, which makes it easier for remote attackers to track users via a crafted HTML e-mail message, a different vulnerability than CVE-2016-1196.
Cybozu Garoon 3.x and 4.x before 4.2.0 does not properly restrict loading of IMG elements, which makes it easier for remote attackers to track users via a crafted HTML e-mail message, a different vulnerability than CVE-2016-1196.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2015-7776
- https://support.cybozu.com/ja-jp/article/8757
- https://support.cybozu.com/ja-jp/article/8897
- https://support.cybozu.com/ja-jp/article/8951
- https://support.cybozu.com/ja-jp/article/8982
- http://jvn.jp/en/jp/JVN53542912/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2016-000085
Связанные уязвимости
CVSS3: 4.3
nvd
больше 9 лет назад
Cybozu Garoon 3.x and 4.x before 4.2.0 does not properly restrict loading of IMG elements, which makes it easier for remote attackers to track users via a crafted HTML e-mail message, a different vulnerability than CVE-2016-1196.