← back
CVE-2005-4209

CVE-2005-4209

EPSS 2.1%
WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote attackers to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross-site scripting (XSS) vulnerability.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/26779unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/17990https://exchange.xforce.ibmcloud.com/vulnerabilities/23551http://www.ipomonis.com/advisories/mdaemon.ziphttp://www.securityfocus.com/bid/15815