Multiple vulnerabilities in Winmail

Описание

Multiple serious vulnerabilities have been found in Winmail Server. Malicious users can exploit these vulnerabilities to inject scripts or overwrite local files. Below is a complete list of vulnerabilities

1. A directory traversal can be exploited remotely via a side parameter;
2. An XSS vulnerability can be exploited remotely via a retid parameter or specially designed e-mail messages.

Первичный источник обнаружения

Связанные продукты

• Winmail-Server

Список CVE

• CVE-2005-3811
  critical
• CVE-2005-3692
  warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com