Описание
The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript.
The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2016-10187
- https://github.com/kovidgoyal/calibre/commit/3a89718664cb8c
- https://bugs.launchpad.net/calibre/+bug/1651728
- http://www.openwall.com/lists/oss-security/2017/01/29/8
- http://www.openwall.com/lists/oss-security/2017/01/31/9
- http://www.securityfocus.com/bid/95909
Связанные уязвимости
CVSS3: 5.5
ubuntu
больше 8 лет назад
The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript.
CVSS3: 5.5
nvd
больше 8 лет назад
The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript.
CVSS3: 5.5
debian
больше 8 лет назад
The E-book viewer in calibre before 2.75 allows remote attackers to re ...