emacs/notmuch-mua.el in Notmuch prior to 0.11.1, when using the Emacs interface, allows user-assisted remote malicious users to read arbitrary files via crafted MML tags, which are not properly quoted in an email reply cna cause the files to be attached to the message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
notmuchmail notmuch 0.11 |
||
notmuchmail notmuch 0.10.2 |
||
notmuchmail notmuch 0.10.1 |
||
notmuchmail notmuch 0.6 |
||
notmuchmail notmuch 0.5 |
||
notmuchmail notmuch 0.4 |
||
notmuchmail notmuch 0.10 |
||
notmuchmail notmuch 0.7 |
||
notmuchmail notmuch 0.6.1 |
||
notmuchmail notmuch 0.3 |
||
notmuchmail notmuch 0.1.1 |
||
notmuchmail notmuch 0.9 |
||
notmuchmail notmuch 0.8 |
||
notmuchmail notmuch 0.1 |
||
notmuchmail notmuch |
||
notmuchmail notmuch 0.3.1 |
||
notmuchmail notmuch 0.2 |