2 matches found
CVE-2017-17843
An issue was discovered in Enigmail before 1.9.9 that allows remote attackers to trigger use of an intended public key for encryption, because incorrect regular expressions are used for extraction of an e-mail address from a comma-separated list, as demonstrated by a modified Full Name field and ...
CVE-2017-17843
The CVE-2017-17843 issue affects Enigmail before 1.9.9, where incorrect regular expressions used to extract an e-mail address from a comma-separated list can cause the intended public key to be used for encryption. Connected sources corroborate this as part of a set of vulnerabilities fixed in Th...