9 matches found
EUVD-2019-2535
Malware in sbrugna...
CVE-2019-10741
K-9 Mail v5.600 can include the original quoted HTML code of a specially crafted, benign looking, email within digitally signed reply messages. The quoted part can contain conditional statements that show completely different text if opened in a different email client. This can be abused by an...
Design/Logic Flaw
K-9 Mail v5.600 can include the original quoted HTML code of a specially crafted, benign looking, email within digitally signed reply messages. The quoted part can contain conditional statements that show completely different text if opened in a different email client. This can be abused by an...
CVE-2019-10741
K-9 Mail v5.600 can include the original quoted HTML code of a specially crafted, benign looking, email within digitally signed reply messages. The quoted part can contain conditional statements that show completely different text if opened in a different email client. This can be abused by an...
CVE-2019-10741
K-9 Mail v5.600 can include the original quoted HTML code of a specially crafted, benign looking, email within digitally signed reply messages. The quoted part can contain conditional statements that show completely different text if opened in a different email client. This can be abused by an...
CVE-2019-10741
K-9 Mail 5.600 exposes a vulnerability where the original quoted HTML in a specially crafted benign-looking email included in (digitally signed) reply messages can contain conditional HTML that renders differently in another client. This can be abused to display content to a third party while pre...
CVE-2019-10741
K-9 Mail v5.600 can include the original quoted HTML code of a specially crafted, benign looking, email within digitally signed reply messages. The quoted part can contain conditional statements that show completely different text if opened in a different email client. This can be abused by an...
Data Leaking 'Surreptitious Sharing' Vulnerability Identified in Android API
Researchers have identified a vulnerability in an Android API used by messaging apps such as Skype and perhaps more concerning, privacy-centric apps such as Signal, and Telegram, that could lead to privilege escalation and data loss including private keys. Dominik Schürmann and Lars Wolf,...
K-9 Mail - Customized SSL, Exported ContentProvider, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application K-9 Mail published at the 'play' market has multiple vulnerabilities...