Julio Cesar Fort

**Name of the Vulnerable Software and Affected Versions** Roundcube Webmail versions prior to 1.4.0 **Description** The issue is related to how Roundcube Webmail handles Punycode xn-- domain names, which can lead to homograph attacks. **Recommendations** For versions prior to 1.4.0, update to version 1.4.0 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Telegram Desktop versions prior to 1.5.12 Telegram applications for Android, iOS, and Linux (affected versions not specified) Description: The issue arises when the application displays messages containing URLs, specifically due to its handling of IDN homograph attacks. This occurs because the application generates a clickable link even when the domain name contains characters from different alphabets, such as Latin and Cyrillic, that are represented identically in the available font. Recommendations: For Telegram Desktop versions prior to 1.5.12, update to version 1.5.12 or later. For Telegram applications on Android, iOS, and Linux, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Open Whisper Signal (aka Signal-Desktop) versions 1.23.1 and earlier Signal Private Messenger application versions 4.35.3 and earlier for Android **Description** The issue occurs when the application displays messages containing URLs, making it vulnerable to an IDN homograph attack. This happens because the application produces a clickable link even if Latin and Cyrillic characters exist in the same domain name, and the available font has an identical representation of characters from different alphabets. **Recommendations** For Open Whisper Signal (aka Signal-Desktop) versions 1.23.1 and earlier, update to a version later than 1.23.1 to resolve the issue. For Signal Private Messenger application versions 4.35.3 and earlier for Android, update to a version later than 4.35.3 to resolve the issue. As a temporary workaround, consider disabling the display of clickable links in messages until a patch is available.

**Name of the Vulnerable Software and Affected Versions** OSU versions 3.10a and 3.11alpha **Description** The issue allows remote attackers to obtain sensitive information via a URL to a non-existent file. This results in the web root path being displayed in the error message. **Recommendations** For OSU version 3.10a, update to a version that does not display the web root path in error messages. For OSU version 3.11alpha, update to a version that does not display the web root path in error messages. As a temporary workaround, consider configuring the error handling to not display sensitive information, such as the web root path, until a patch is available.

**Name of the Vulnerable Software and Affected Versions** QNX RTOS versions 6.1.0 through 6.3 QNX RTOS versions prior to 6.1.0 **Description** The issue concerns the inputtrap utility, which does not properly check permissions when the -t flag is specified. This allows local users to read arbitrary files. **Recommendations** For QNX RTOS versions 6.1.0 through 6.3, consider restricting access to the inputtrap utility until a fix is available. For QNX RTOS versions prior to 6.1.0, consider restricting access to the inputtrap utility until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** QNX RTP version 6.1 **Description** A race condition issue exists, allowing local users to gain privileges. This is achieved by modifying the `PATH` environment variable to reference a malicious `io-graphics` program before it is executed by `crrtrap`. **Recommendations** For QNX RTP version 6.1, consider restricting modifications to the `PATH` environment variable to prevent malicious references to `io-graphics` programs until a fix is available. As a temporary workaround, monitor and control the execution of `crrtrap` to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** QNX Photon microGUI for QNX RTP version 6.1 **Description** The issue concerns multiple buffer overflows in various components, including phrelay-cfg, phlocale, pkg-installer, and input-cfg. This allows local users to gain privileges by providing a long -s (server) command line parameter. **Recommendations** For QNX Photon microGUI for QNX RTP version 6.1, consider restricting access to the `phrelay-cfg`, `phlocale`, `pkg-installer`, and `input-cfg` components to minimize the risk of exploitation. Avoid using the `-s` command line parameter with long input until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.