Please do not reply directly to this email. All additional comments should be made in the comments box of this bug.
Summary: CVE-2009-2260 stardict: network queries may expose sensitive information Alias: CVE-2009-2260
https://bugzilla.redhat.com/show_bug.cgi?id=508945
Summary: CVE-2009-2260 stardict: network queries may expose sensitive information Product: Security Response Version: unspecified Platform: All URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-20 09-2260 OS/Version: Linux Status: NEW Status Whiteboard: impact=low?,source=debian,reported=20090626,public=200 90626 Keywords: Security Severity: medium Priority: medium Component: vulnerability AssignedTo: security-response-team@redhat.com ReportedBy: thoger@redhat.com CC: majain@redhat.com, cchance@redhat.com, zhu@redhat.com, fedora-i18n-bugs@redhat.com Estimated Hours: 0.0 Classification: Other Target Release: ---
Common Vulnerabilities and Exposures assigned an identifier CVE-2009-2260 to the following vulnerability:
stardict 3.0.1, when Enable Net Dict is configured, sends the contents of the clipboard to a dictionary server, which allows remote attackers to obtain sensitive information by sniffing the network.
References: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534731 http://www.securityfocus.com/archive/1/504583