WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote attackers to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross-site scripting (XSS) vulnerability.
References
Link | Resource |
---|---|
http://secunia.com/advisories/17990 | Exploit Vendor Advisory |
http://www.ipomonis.com/advisories/mdaemon.zip | |
http://www.securityfocus.com/bid/15815 | Exploit |
https://exchange.xforce.ibmcloud.com/vulnerabilities/23551 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-12-13T11:00:00
Updated: 2017-07-19T15:57:01
Reserved: 2005-12-13T00:00:00
Link: CVE-2005-4209
JSON object: View
NVD Information
Status : Modified
Published: 2005-12-13T11:03:00.000
Modified: 2017-07-20T01:29:12.067
Link: CVE-2005-4209
JSON object: View
Redhat Information
No data.
CWE