Incomplete Blacklist of Frame Owning Elements: CVE-2018-15669 Incomplete Blacklist of Frame Owning Elements: CVE-2018-15669

Home  |  Research  |  Resources  |  Advisories  |  Airmail 3 for Mac

Airmail 3 for Mac

Incomplete Blacklist of Frame Owning Elements

CVE ID

CVE-2018-15669

VENDOR

Bloop S.R.L.

PRODUCT

Airmail 3 for Mac

Product version

3.5.9

Vulnerability Details

Airmail's primary WebView instance implements "webView:decidePolicyForNavigationAction:request:frame:decisionListener:" such that requests from HTMLIFrameElements are blacklisted. However, other sub-classes of HTMLFrameOwnerElements are not forbidden by the policy. An attacker may abuse HTML Plug-In Elements within an email to trigger Frame navigation requests that bypass this filter.

Learn More →

Vendor response

No response.

Disclosure timeline

08-06-2018 - Vendor disclosure via email
08-13-2018 - Vendor notified via Support Page
08-21-2018 - Vendor notified of the advisory release

VerSprite and we45 Partner to Operationalize Security Training

Upcoming Event

VerSprite and we45 Partner to Operationalize Security Training

Web Application Security

Cyber crime

Why Bad Guys do Bad Things:

Blog Post

Why Bad Guys do Bad Things:

Security Operations Centers

Insider Threats

Analyzing the State of Cybersecurity

Blog Post

Analyzing the State of Cybersecurity

Healthcare & Wellness Industry

    Back to Advisory Main         Visit Resource Library    

Offensive Minded Security Exploit Development

Learn More

arrow right

We are an international squad of professionals working as one.

logos

Copyright 2021 VerSprite - All Rights Reserved