Vulnerability Details CVE-2005-4209
WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote attackers to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross-site scripting (XSS) vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.5%
CVSS Severity
CVSS v2 Score 4.3
References
- http://secunia.com/advisories/17990
- http://www.ipomonis.com/advisories/mdaemon.zip
- http://www.securityfocus.com/bid/15815
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23551
- http://secunia.com/advisories/17990
- http://www.ipomonis.com/advisories/mdaemon.zip
- http://www.securityfocus.com/bid/15815
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23551
Products affected by CVE-2005-4209
-
cpe:2.3:a:alt-n:mdaemon:8.1.3
-
cpe:2.3:a:alt-n:worldclient:8.1.3