PT-2006-3835 · Sylpheed · Sylpheed-Claws+1
Publicado
2006-06-09
·
Atualizado
2018-08-13
·
CVE-2006-2920
CVSS v2.0
2.6
Baixa
| Vetor | AV:N/AC:H/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Sylpheed-Claws versions prior to 2.2.2
Sylpheed versions prior to 2.2.6
Description
The issue allows remote attackers to bypass the URI check functionality, making it easier to conduct phishing attacks via a URI that begins with a space character.
Recommendations
For Sylpheed-Claws versions prior to 2.2.2, update to version 2.2.2 or later.
For Sylpheed versions prior to 2.2.6, update to version 2.2.6 or later.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Sylpheed
Sylpheed-Claws