← volver
CVE-2012-1103

CVE-2012-1103

EPSS 2.3%
emacs/notmuch-mua.el in Notmuch before 0.11.1, when using the Emacs interface, allows user-assisted remote attackers to read arbitrary files via crafted MML tags, which are not properly quoted in an email reply cna cause the files to be attached to the message.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://git.notmuchmail.org/git/notmuch/blobdiff/3f2050ac221a4c940c12442f156f12fff11600c6..ae438ccd8c77831158c7c30f19710d798ee4a6b4:/emacs/notmuch-mua.elhttp://notmuchmail.org/news/release-0.11.1/http://secunia.com/advisories/48139http://www.debian.org/security/2012/dsa-2416http://www.openwall.com/lists/oss-security/2012/03/04/5http://www.openwall.com/lists/oss-security/2012/03/05/6http://www.securityfocus.com/bid/52155