Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4209

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2005-4209
Last Modified 31 Oct 2009 12:00:00
Published 13 Dec 2005 06:03:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2005-4209

Summary

WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote attackers to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross-site scripting (XSS) vulnerability.

Vulnerable Systems

Application

  • Alt-n Mdaemon 8.1.3

  • Alt-n Worldclient 8.1.3


References

XF - mdaemon-worldclient-subject-dos(23551)

BID - 15815

SECUNIA - 17990


Last Updated: 27 May 2016 10:41:12