RSS   Podatności dla 'Mail solution'   RSS

2006-02-19
 
CVE-2006-0798

 

 
Multiple directory traversal vulnerabilities in the IMAP service in Macallan Mail Solution before 4.8.05.004 allow remote authenticated users to read e-mails of other users or create, modify, or delete directories via a .. (dot dot) in the argument to the (1) CREATE, (2) SELECT, (3) DELETE, or (4) RENAME commands.

 
2004-12-31
 
CVE-2004-2071

 

 
Macallan Mail Solution 2.8.4.6 (Build 260), and possibly earlier versions, allows remote attackers to bypass authentication in the web interface via an HTTP GET request with two slashes ("//") after the server name.

 


Copyright 2024, cxsecurity.com

 

Back to Top