Seattle Lab Software: >> Emurl Security Vulnerabilities
The EMURL web-based email account software encodes predictable identifiers in user session URLs, which allows a remote attacker to access a user's email account.
CVSS Score
5.0
EPSS Score
0.036
Published
2000-05-15
Seattle Labs Emurl 2.0, and possibly earlier versions, stores e-mail attachments in a specific directory with scripting enabled, which allows a malicious ASP file attachment to execute when the recipient opens the message.
CVSS Score
7.5
EPSS Score
0.005
Published
1999-07-28