CVE-2017-5592
An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for profanity (0.4.7 - 0.5.0).Enginsight
Vendor | Product | Version |
---|---|---|
profanity_project | profanity | 0.4.7 |
profanity_project | profanity | 0.4.7 |
profanity_project | profanity | 0.4.7 |
profanity_project | profanity | 0.4.7 |
profanity_project | profanity | 0.4.7 |
profanity_project | profanity | 0.5.0 |
profanity_project | profanity | 0.5.0 |
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
profanity |
|
Common Weakness Enumeration