Merak Mail Server and Webmail Email Message HTML Injection Vulnerability

Bugtraq ID: 32969
Class: Input Validation Error
CVE: CVE-2008-5734
Remote: Yes
Local: No
Published: Dec 22 2008 12:00AM
Updated: Dec 31 2008 09:02PM
Credit: Nenad Vijatov
Vulnerable: IceWarp Web Mail 5.6.1
IceWarp Web Mail 5.6.1
IceWarp Web Mail 5.6
IceWarp Web Mail 5.6
IceWarp Web Mail 5.5.1
IceWarp Web Mail 5.4
IceWarp Web Mail 5.3.2
IceWarp Web Mail 5.3.1
IceWarp Web Mail 5.3
IceWarp Web Mail 5.2.8
IceWarp Web Mail 5.2.7
IceWarp Merak Mail Server 9.3.2
IceWarp Merak Mail Server 9.0
IceWarp Merak Mail Server 8.9.2
IceWarp Merak Mail Server 8.9.1
Not Vulnerable: IceWarp Merak Mail Server 9.4


 

Privacy Statement
Copyright 2010, SecurityFocus