CVE-2004-1672 in Web Mailinfo

Summary

attachment.html in Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 and possibly other versions allows remote attackers to view other users attachments by specifying the username and message ID in an HTTP request.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

02/21/2005

Disclosure

10/12/2004

Moderation

VulDB entry created

Entries

VDB-22271 (1)

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

7.3

EPSS

0.01048

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1672
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1672
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1672/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!