mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-09 23:27:33 +02:00
marc
1.1 KiB
1.1 KiB
CVE-2020-12272
Description
OpenDMARC through 1.3.2 and 1.4.x allows attacks that inject authentication results to provide false information about the domain that originated an e-mail message. This is caused by incorrect parsing and interpretation of SPF/DKIM authentication results, as demonstrated by the example.net(.example.com substring.
POC
Reference
No PoCs from references.
Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Live-Hack-CVE/CVE-2020-12272
- https://github.com/Mr-Anonymous002/espoofer
- https://github.com/Teutades/Espoofer
- https://github.com/anjhz0318/SpamTester
- https://github.com/chenjj/espoofer
- https://github.com/merlinepedra/ESPOOFER
- https://github.com/prajwal0909/es
- https://github.com/prashantvermaofficial/Email-Spoofing-Testing