MidnightBSD

Advisories for flipdogsolutions

CVE-2017-17688 MEDIUM

The OpenPGP specification allows a Cipher Feedback Mode (CFB) malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL. NOTE: third parties report that this is a problem in applications that mishandle the Modification Detection Code (MDC) feature or accept an obsolete packet type, not a problem in the OpenPGP specification

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
bloop airmail -
apple mail -
mozilla thunderbird -
horde horde_imp -
microsoft outlook 2007
r2mail2 r2mail2 -
postbox-inc postbox -
emclient emclient -
flipdogsolutions maildroid -
roundcube webmail -
freron mailmate -
CVE-2017-17689 MEDIUM

The S/MIME specification allows a Cipher Block Chaining (CBC) malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
apple mail -
mozilla thunderbird -
horde horde_imp -
microsoft outlook 2007
r2mail2 r2mail2 -
microsoft outlook 2010
flipdogsolutions maildroid -
9folders nine -
google gmail -
microsoft outlook 2013
bloop airmail -
ritlabs the_bat -
kde trojita -
gnome evolution -
postbox-inc postbox -
microsoft outlook 2016
emclient emclient -
ibm notes -
kde kmail -
freron mailmate -