This authenticated QID detects vulnerable SourceTree installations by fetching the information from /Applications/SourceTree.app/Contents/ist. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SourceTree for versions 2.x HKLM\SOFTWARE\Atlassian\SourceTree for versions 1.x
This authenticated QID detects vulnerable versions of SourceTree.exe by retrieving the path from the following registry entries:
Sourcetree for macOS versions 4.0.1 and earlier Sourcetree for Windows versions 3.3.8 and earlier A Malicious URLs may cause Git to present stored credentials to the wrong server. The embedded version of Git used in Sourcetree for macOS and Sourcetree for Windows is vulnerable.
0 kommentar(er)
