WindowsPT 1.2 - User ID Key Spoofing
| EKU-ID: 35276 | CVE: CVE-2007-3201;OSVDB-41727 | OSVDB-ID: |
| Author: nnposter | Published: 2007-06-11 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 35276 | CVE: CVE-2007-3201;OSVDB-41727 | OSVDB-ID: |
| Author: nnposter | Published: 2007-06-11 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/24412/info WinPT (Windows Privacy Tray) is prone to a key-spoofing vulnerability because it fails to properly display user-supplied key data. An attacker can exploit this issue to trick victim users into encrypting potentially sensitive information with a malicious key that appears to be legitimate. WinPT 1.2.0 is vulnerable; other versions may also be affected. " <attacker@examle.com>"SSSSMMMMSSSS<victim@example2.com> "mailto:attacker@foo.org