Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2016-7968

Description

KMail since version 5.3.0 used a QWebEngine based viewer that had JavaScript enabled. HTML Mail contents were not sanitized for JavaScript and included code was executed.

POC

Reference

- http://www.openwall.com/lists/oss-security/2016/10/05/1

Github

No PoCs found on GitHub currently.