2 matches found
The vulnerability of the ParseAddressList function in the net/mail package in the Go programming language, which allows attackers to perform spoofing attacks.
The vulnerability of the ParseAddressList function in the net/mail package in the Go programming language is related to insufficient checking of the names displayed by this function. Exploitation of this vulnerability could allow a malicious actor to perform spear-phishing attacks by sending...
PT-2024-4460 · Go +9 · Netmail +9
Name of the Vulnerable Software and Affected Versions: net/mail package in Go affected versions not specified Description: The issue is related to the ParseAddressList function, which incorrectly handles comments within display names. This can lead to different trust decisions being made by...