Описание
Enigmail 1.7.x before 1.7.2 sends emails in plaintext when encryption is enabled and only BCC recipients are specified, which allows remote attackers to obtain sensitive information by sniffing the network.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2:1.7.2-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [2:1.7.2-0ubuntu0.14.04.1]] |
| lucid | ignored | end of life |
| precise | released | 2:1.7.2-0ubuntu0.12.04.1 |
| trusty | released | 2:1.7.2-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [2:1.7.2-0ubuntu0.14.04.1] |
| upstream | released | 1.7.2 |
| utopic | released | 2:1.7.2-0ubuntu0.14.10.1 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
Enigmail 1.7.x before 1.7.2 sends emails in plaintext when encryption is enabled and only BCC recipients are specified, which allows remote attackers to obtain sensitive information by sniffing the network.
Enigmail 1.7.x before 1.7.2 sends emails in plaintext when encryption ...
Enigmail 1.7.x before 1.7.2 sends emails in plaintext when encryption is enabled and only BCC recipients are specified, which allows remote attackers to obtain sensitive information by sniffing the network.
EPSS
4.3 Medium
CVSS2