CVE-2004-1674 in Web Mailinfo

Summary

viewaction.html in Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 and possibly other versions allows remote attackers to (1) delete arbitrary files via the originalfolder parameter or (2) move arbitrary files via the messageid parameter.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

02/21/2005

Disclosure

10/12/2004

Moderation

VulDB entry created

Entries

VDB-22273 (1)

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

7.3

EPSS

0.00876

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1674
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1674
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1674/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!