CVE-2001-1281

Sažetak

Web Messaging Server for Ipswitch IMail 7.04 and earlier allows remote authenticated users to change information for other users by modifying the olduser parameter in the "Change User Information" web form.

Reference

http://archives.neohapsis.com/archives/bugtraq/2001-10/0076.html
http://www.ipswitch.com/Support/IMail/news.html
http://www.securityfocus.com/bid/3429

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

10-09-2008 - 19:10

Objavljeno

12-10-2001 - 04:00