Airmail 3 for Mac Advisory:EventHandler Race Condition: CVE-2018-15670 Airmail 3 for Mac Advisory:EventHandler Race Condition: CVE-2018-15670

Home  |  Research  |  Resources  |  Advisories  |  Airmail 3 for Mac

Airmail 3 for Mac

EventHandler Race Condition

CVE ID

CVE-2018-15670

VENDOR

Bloop S.R.L.

PRODUCT

Airmail 3 for Mac

Product version

3.5.9

Vulnerability Details

Airmail's primary WebView instance implements "webView:decidePolicyForNavigationAction:request:frame:decisionListener:" such that "OpenURL" is the default URL handler. A navigation request is processed by the default URL handler only if the "currentEvent" is "NX_LMOUSEUP" or "NX_OMOUSEUP". An attacker may abuse HTML Elements with an EventHandler for a chance to validate navigation requests for URLs that are processed during the "NX_LMOUSEUP" event triggered by clicking an email.

Learn More →

Vendor response

No response.

Disclosure timeline

08-06-2018 - Vendor disclosure via email
08-13-2018 - Vendor notified via Support Page
08-21-2018 - Vendor notified of the advisory release

Secure Your Website: Simple HTTPS with Nginx

Secure Your Website: Simple HTTPS with Nginx

Blog Post

Secure Your Website: Simple HTTPS with Nginx

Web Application Security

hacking passwords

Phishing Attacks Through Cloned Websites

Blog Post

Phishing Attacks Through Cloned Websites

Password Management

How DevSecOps is Transforming the Application Security & Governance Risk Compliance

How DevSecOps Efforts Are Changing How We Govern Security Controls

Webinar

How DevSecOps Efforts Are Changing How We Govern Security Controls

Benchmark Testing & Security Control Frameworks

    Back to Advisory Main         Visit Resource Library    

Offensive Minded Security Exploit Development

Learn More

arrow right

We are an international squad of professionals working as one.

logos

Copyright 2019 VerSprite - All Rights Reserved