MSA/SMTP.cpp in Trojita before 0.8 ignores certificate-verification errors, which allows man-in-the-middle attackers to spoof SMTP servers.
References
Link | Resource |
---|---|
https://bugs.kde.org/show_bug.cgi?id=423453 | Issue Tracking Patch Third Party Advisory |
https://gerrit.vesnicky.cesnet.cz/r/1035 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-06-25T10:49:09
Updated: 2020-06-25T10:49:09
Reserved: 2020-06-25T00:00:00
Link: CVE-2020-15047
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-06-25T11:15:10.393
Modified: 2020-07-02T13:28:54.000
Link: CVE-2020-15047
JSON object: View
Redhat Information
No data.
CWE