Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The OpenConnectionTask::handleStateHelper function in Imap/Tasks/OpenConnectionTask.cpp in Trojita before 0.4.1 allows man-in-the-middle attackers to trigger use of cleartext for saving a message into a (1) sent or (2) draft folder via a PREAUTH response that prevents later use of the STARTTLS command.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Trojita 信息泄露漏洞
Vulnerability Description
Trojita是Trojita团的一款基于Qt框架的IMAP电子邮件客户端,它支持随时随地访问邮件、应用于多种平台等。 Trojita 0.4及之前版本中的Imap/Tasks/OpenConnectionTask.cpp文件的‘OpenConnectionTask::handleStateHelper ’函数存在安全漏洞。当用户发送电子邮件时,攻击者可通过实施中间人攻击利用该漏洞使消息自动保存到‘发送’或‘草稿’文件夹,获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A