|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] Kmail <= 1.9.1 (table/frameset) DOS
From: Vidar Løkken (vidarlo
vestdata.no)
Date: Sat Oct 14 2006 - 20:43:08 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Sat, 14 Oct 2006, nnp wrote:
> Background:
> Kmail is a HTML compatible email client that comes installed by
> default with the KDE desktop. This DOS requires HTML parsing to be
> enabled. This can be done in Kmail by going to Settings -> Configure
> Kmail ->Security -> and tick Prefer HTML to Plain Text.
>
There is a reason HTML is disabled by default, and you explicit have to
enable it, and they say it might be dangerous. So it is not a serious
issue IMHO, but should neverthless be fixed.
--
MVH,
Vidar
May your Tongue stick to the Roof of your Mouth with the Force of a
Thousand Caramels.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]