CVE-2018-15586

Published February 11th, 2019

View on NVD ↗

CVSS v3

N/A

CVSS v2

4.3

MEDIUM

Affected

PROJECT

Description

Enigmail before 2.0.6 is prone to to OpenPGP signatures being spoofed for arbitrary messages using a PGP/INLINE signature wrapped within a specially crafted multipart HTML email.

RUB-NDS/Johnny-You-Are-Fired

Artifacts for the USENIX publication.

GitHub