CVE-2005-1753 - OpenCVE

ReadMessage.jsp in JavaMail API 1.1.3 through 1.3, as used by Apache Tomcat 5.0.16, allows remote attackers to view other users' e-mail attachments via a direct request to /mailboxesdir/username@domainname. NOTE: Sun and Apache dispute this issue. Sun states: "The report makes references to source code and files that do not exist in the mentioned products.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Sun	Javamail

Configuration 1 [-]

OR	cpe:2.3:a:sun:javamail:1.1.3:::::::*
	cpe:2.3:a:sun:javamail:1.2:::::::*
	cpe:2.3:a:sun:javamail:1.3:::::::*

References

Link	Resource
http://marc.info/?l=bugtraq&m=111697083812367&w=2
http://tomcat.apache.org/security-5.html

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2006-05-21T16:00:00

Updated: 2016-10-17T13:57:01

Reserved: 2005-05-26T00:00:00

Link: CVE-2005-1753

JSON object: View

NVD Information

Status : Modified

Published: 2005-12-31T05:00:00.000

Modified: 2024-05-17T00:24:55.710

Link: CVE-2005-1753

JSON object: View

Redhat Information

No data.

CWE

CWE-264

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-05-24T00:00:00", "descriptions": [{"lang": "en", "value": "ReadMessage.jsp in JavaMail API 1.1.3 through 1.3, as used by Apache Tomcat 5.0.16, allows remote attackers to view other users' e-mail attachments via a direct request to /mailboxesdir/username@domainname. NOTE: Sun and Apache dispute this issue. Sun states: \"The report makes references to source code and files that do not exist in the mentioned products."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-10-17T13:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20050524 Javamail Multiple Information Disclosure Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=111697083812367&w=2"}, {"tags": ["x_refsource_MISC"], "url": "http://tomcat.apache.org/security-5.html"}], "tags": ["disputed"], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-1753", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "** DISPUTED ** ReadMessage.jsp in JavaMail API 1.1.3 through 1.3, as used by Apache Tomcat 5.0.16, allows remote attackers to view other users' e-mail attachments via a direct request to /mailboxesdir/username@domainname. NOTE: Sun and Apache dispute this issue. Sun states: \"The report makes references to source code and files that do not exist in the mentioned products.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20050524 Javamail Multiple Information Disclosure Vulnerabilities", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=111697083812367&w=2"}, {"name": "http://tomcat.apache.org/security-5.html", "refsource": "MISC", "url": "http://tomcat.apache.org/security-5.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-1753", "datePublished": "2006-05-21T16:00:00", "dateReserved": "2005-05-26T00:00:00", "dateUpdated": "2016-10-17T13:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sun:javamail:1.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "04D05527-847C-4630-9667-F41DD78917DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:sun:javamail:1.2:*:*:*:*:*:*:*", "matchCriteriaId": "398E46A2-D9BF-4AF6-B068-A28233B76ECC", "vulnerable": true}, {"criteria": "cpe:2.3:a:sun:javamail:1.3:*:*:*:*:*:*:*", "matchCriteriaId": "9EB65E60-8259-4C08-AC3B-7D3FE51F42F0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "ReadMessage.jsp in JavaMail API 1.1.3 through 1.3, as used by Apache Tomcat 5.0.16, allows remote attackers to view other users' e-mail attachments via a direct request to /mailboxesdir/username@domainname. NOTE: Sun and Apache dispute this issue. Sun states: \"The report makes references to source code and files that do not exist in the mentioned products."}], "id": "CVE-2005-1753", "lastModified": "2024-05-17T00:24:55.710", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-12-31T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=111697083812367&w=2"}, {"source": "cve@mitre.org", "url": "http://tomcat.apache.org/security-5.html"}], "sourceIdentifier": "cve@mitre.org", "vendorComments": [{"comment": "We do not believe this is a security issue; this is a deliberate circumvention of the Javamail API. The Javamail API provides a comprehensive and secure method to retrieve mail. In this example, the author retreives the message directly from the mail directory on the\nfilesystem. Even if the user insists on using this incorrect way of accessing mail, then the\npermissions set by the dovecot and tomcat packages are enough to protect against\ndirect access to most of the files listed in the bug report.", "lastModified": "2006-08-30T00:00:00", "organization": "Red Hat"}], "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}