← back
CVE-2003-1481

CVE-2003-1481

EPSS 1.8%
CommuniGate Pro 3.1 through 4.0.6 sends the session ID in the referer field for an HTTP request for an image, which allows remote attackers to hijack mail sessions via an e-mail with an IMG tag that references a malicious URL that captures the referer.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/27unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://securityreason.com/securityalert/3290https://exchange.xforce.ibmcloud.com/vulnerabilities/11932http://www.securityfocus.com/archive/1/320438http://www.securityfocus.com/bid/7501