Lucene search
PRIOn knowledge basePRION:CVE-2017-17844HistoryDec 27, 2017 - 5:08 p.m.
Design/Logic Flaw
2017-12-2717:08:00
PRIOn knowledge base
www.prio-n.com
4
An issue was discovered in Enigmail before 1.9.9. A remote attacker can obtain cleartext content by sending an encrypted data block (that the attacker cannot directly decrypt) to a victim, and relying on the victim to automatically decrypt that block and then send it back to the attacker as quoted text, aka the TBE-01-005 “replay” issue.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 8.0 | |
| debian_linux | eq | 9.0 | |
| enigmail | lt | 1.9.9 |
References
Related
cve
cve
CVE-2017-17844
2017-12-27 17:08:19
ubuntucve
ubuntucve
CVE-2017-17844
2017-12-27 00:00:00
cvelist
cvelist
CVE-2017-17844
2017-12-22 23:00:00
nvd
nvd
CVE-2017-17844
2017-12-27 17:08:19
debiancve
debiancve
CVE-2017-17844
2017-12-27 17:08:19
openvas
openvas
Debian: Security Advisory (DLA-1219-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-4070-1)
2017-12-20 00:00:00
Mageia: Security Advisory (MGASA-2017-0477)
2022-01-28 00:00:00
osv
osv
enigmail - security update
2017-12-21 00:00:00
enigmail - security update
2017-12-23 00:00:00
nessus
nessus
Debian DLA-1219-1 : enigmail security update
2017-12-26 00:00:00
Debian DSA-4070-1 : enigmail - security update
2017-12-26 00:00:00
debian
debian
[SECURITY] [DLA 1219-1] enigmail security update
2017-12-23 11:35:08
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2017-12-31 03:10:15