exploitDog

CVE-2010-1568

Опубликовано: 14 мая 2010

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

The Send Secure functionality in the Cisco IronPort Desktop Flag Plug-in for Outlook before 6.5.0-006 does not properly handle simultaneously composed messages, which might allow remote attackers to obtain cleartext contents of e-mail messages that were intended to be encrypted, aka bug 65623.

Ссылки

http://www.cisco.com/en/US/products/products_security_response09186a0080b2c505.html
Vendor Advisory
http://www.cisco.com/en/US/products/products_security_response09186a0080b2c505.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cisco:ironport_desktop_flag_plugin_for_outlook:*:*:*:*:*:*:*:*

Версия до 6.5.0 (включая)

cpe:2.3:a:cisco:ironport_desktop_flag_plugin_for_outlook:6.2.4.3:*:*:*:*:*:*:*

EPSS

Процентиль: 48%

0.0025

Низкий

5 Medium

CVSS2

Дефекты

CWE-310

Связанные уязвимости

GHSA-m54q-x8w5-9jcc

github

больше 3 лет назад

The Send Secure functionality in the Cisco IronPort Desktop Flag Plug-in for Outlook before 6.5.0-006 does not properly handle simultaneously composed messages, which might allow remote attackers to obtain cleartext contents of e-mail messages that were intended to be encrypted, aka bug 65623.

EPSS

Процентиль: 48%

0.0025

Низкий

5 Medium

CVSS2

Дефекты

CWE-310