Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Enigmail before 1.9.9 that allows remote attackers to trigger use of an intended public key for encryption, because incorrect regular expressions are used for extraction of an e-mail address from a comma-separated list, as demonstrated by a modified Full Name field and a homograph attack, aka TBE-01-002.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Enigmail 安全漏洞
Vulnerability Description
Enigmail是Enigmail团队开发的一个Mozilla Thunderbird和Seamonkey的安全扩展,它支持撰写和接收通过安全签名和加密的邮件(使用OpenPGP标准进行签名和加密),并提供GUI配置和OpenPGP密钥管理。 Enigmail 1.9.9之前的版本中存在安全漏洞,该漏洞源于程序使用不正确的正则表达式从以逗号分隔的列表中提取邮件地址。攻击者可利用该漏洞获取权限。
CVSS Information
N/A
Vulnerability Type
N/A