Information disclosure in messagelib - CVE-2018-19516
Published: December 8, 2018 / Updated: December 18, 2018
Vulnerability identifier: #VU16581
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2018-19516
CWE-ID: CWE-200
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: KDE.org
Affected software:
messagelib
messagelib
Detailed vulnerability description
The vulnerability allows a remote attacker to obtain potentially sensitive information.
The vulnerability exists due to messagelib by default displays emails as plain text, but gives the user an option to "Prefer HTML to plain text" in the settings and if that option is not enabled there is way to enable HTML display when an email contains HTML. A remote attacker can supply specially crafted HTML emails, trick messagelib into opening a new browser window when displaying said email as HTML and access IP address.
How to mitigate CVE-2018-19516
Install update from vendor's website.