CVE-2004-1672

attachment.html in Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 and possibly other versions allows remote attackers to view other users' attachments by specifying the username and message ID in an HTTP request.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:icewarp:web_mail:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:icewarp:web_mail:5.2.7:*:*:*:*:*:*:*
cpe:2.3:a:icewarp:web_mail:5.2.8:*:*:*:*:*:*:*

History

No history.

Information

Published : 2004-10-12 04:00

Updated : 2024-02-04 16:31


NVD link : CVE-2004-1672

Mitre link : CVE-2004-1672

CVE.ORG link : CVE-2004-1672


JSON object : View

Products Affected

icewarp

  • web_mail