2 matches found
CVE-2015-9231
iTerm2 3.x before 3.1.1 allows remote attackers to discover passwords by reading DNS queries. A new default feature was added to iTerm2 version 3.0.0 and unreleased 2.9.x versions such as 2.9.20150717 that resulted in a potential information disclosure. In an attempt to see whether the text under...
CVE-2015-9231
CVE-2015-9231 affects iTerm2 3.x prior to 3.1.1. A default feature introduced in iTerm2 3.0.0 caused the text under the cursor (or selection) to be sent as unencrypted DNS queries when checking if it was a URL, potentially disclosing passwords and other sensitive data over the network. Public ent...