Menu

#985 Signature Spoofing with PGP Inline and Text Header

duplicate
nobody
None
2.0.10
Minor
60.5.1
2.2.11
All
---
nobody
2019-05-08
2019-05-07
Marcus Brinkmann
No

See attachment for another example of a signature spoofing attack with PGP inline. I use plaintext wrapping of a proper inline signature (this causes a "Part of the message signed" message in the info box). I hide the signed plaintext with whitespace (this causes a scrollbar to appear that could be noticed by the victim). The prepended message at the top uses UI redressing to spoof the "BEGIN ENCRYPTED or SIGNED PART" part. The "part of the message signed" is correct, because I also add a "non-signed part" to the spoofed section. I avoid the extra warning that occurs with > 10 newlines by using Unicode 0x0085 NEXT LINE characters (there are also many other whitespace options).

2 Attachments
Lottery Winner.eml
lottery.png

Related

Forum: Enigmail no longer displays unencrypted part of message

Discussion

  • Marcus Brinkmann

    Marcus Brinkmann - 2019-05-07
    • Attachments has changed:

    Diff:

    --- old
+++ new
@@ -1 +1,2 @@
+Lottery Winner.eml (12.4 kB; message/rfc822)
 lottery.png (69.9 kB; image/png)
     

  • Marcus Brinkmann

    Marcus Brinkmann - 2019-05-07

    Proof of concept.

     

  • Patrick Brunschwig

    Patrick Brunschwig - 2019-05-08
    • status: open --> duplicate
     

Log in to post a comment.

MongoDB Logo MongoDB