CVE-2011-3201

Published: Mar 8, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

GNOME Evolution before 3.2.3 allows user-assisted remote attackers to read arbitrary files via the attachment parameter to a mailto: URL, which attaches the file to the email.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://git.gnome.org/browse/evolution/commit/?id=0a478083fa31aec0059bc6feacc054226fe55b56

x_refsource_CONFIRM

RHSA-2013:0516

vendor-advisory

x_refsource_REDHAT

http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

x_refsource_CONFIRM

evolution-mailto-info-disclosure(82450)

vdb-entry

x_refsource_XF

https://bugzilla.redhat.com/show_bug.cgi?id=733504

x_refsource_MISC

https://bugzilla.gnome.org/show_bug.cgi?id=657374

x_refsource_CONFIRM

https://git.gnome.org/browse/evolution/commit/?id=588c410718068388f8ce0004a71c104a4c89cce3

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-3201

Description

Affected Products

References