Bbaboha

**Name of the Vulnerable Software and Affected Versions** Canary Mail (affected versions not specified) Blue Mail (affected versions not specified) **Description** A flaw exists in the data protection mechanisms of email clients. Remote attackers may be able to conduct phishing attacks by exploiting this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Blue Mail versions 1.140.103 and below **Description** Blue Mail’s attachment interaction functionality saves documents to the file system without a Mark-of-the-Web tag. This bypasses file protection mechanisms in Windows OS and third-party software, potentially enabling attackers to conduct phishing attacks remotely. **Recommendations** Update Blue Mail to a version newer than 1.140.103.