CVE-2017-7440

Kerio Connect 8.0.0 through 9.2.2, and Kerio Connect Client desktop application for Windows and Mac 9.2.0 through 9.2.2, when e-mail preview is enabled, allows remote attackers to conduct clickjacking attacks via a crafted e-mail message...

CVE-2017-7440

Kerio Connect (versions 8.0.0–9.2.2) and Kerio Connect Client (Windows/Mac, versions 9.2.0–9.2.2) are affected by a clickjacking vulnerability when email preview is enabled. A remote attacker could exploit a specially crafted email to perform clickjacking. Impact is described as enabling (partial...