Multiple cross-site request forgery (CSRF) vulnerabilities in Atmail Webmail Server before 7.2 allow remote attackers to hijack the authentication of administrators for requests that (1) add user accounts, (2) modify user accounts, (3) delete user accounts, or (4) stop the product's service.
References
Link | Resource |
---|---|
http://atmail.com/changelog/ | |
http://osvdb.org/101936 | |
http://www.kb.cert.org/vuls/id/204950 | US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: certcc
Published: 2014-01-12T15:00:00
Updated: 2015-05-15T16:57:00
Reserved: 2013-10-04T00:00:00
Link: CVE-2013-6028
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-01-12T18:34:55.767
Modified: 2015-08-07T17:40:25.807
Link: CVE-2013-6028
JSON object: View
Redhat Information
No data.
CWE