Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2017-9604  

KDE kmail before 5.5.2 and messagelib before 5.5.2, as distributed in KDE Applications before 17.04.2, do not ensure that a plugin's sign/encrypt action occurs during use of the Send Later feature, which allows remote attackers to obtain sensitive information by sniffing the network.

Source
Severity Medium

Remote Yes

Type Information disclosure

Description 

KDE kmail before 5.5.2 and messagelib before 5.5.2, as distributed in KDE Applications before 17.04.2, do not ensure that a plugin's sign/encrypt action occurs during use of the Send Later feature, which allows remote attackers to obtain sensitive information by sniffing the network.

AVG-300 messagelib 17.04.1-1 17.04.2-1 Medium Fixed

AVG-299 kmail 17.04.1-1 17.04.2-1 Medium Fixed

14 Jun 2017 ASA-201706-17 AVG-300 messagelib Medium information disclosure

14 Jun 2017 ASA-201706-16 AVG-299 kmail Medium information disclosure 

https://commits.kde.org/kmail/78c5552be2f00a4ac25bd77ca39386522fca70a8
https://commits.kde.org/messagelib/c54706e990bbd6498e7b1597ec7900bc809e8197

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started