Vulnerabilities > CVE-2004-2071 - Unspecified vulnerability in Macallan Mail Solution 2.8.4.6Build260
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN macallan
exploit available
Summary
Macallan Mail Solution 2.8.4.6 (Build 260), and possibly earlier versions, allows remote attackers to bypass authentication in the web interface via an HTTP GET request with two slashes ("//") after the server name.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Macallan Mail Solution Macallan Mail Solution 2.8.4 .6(Build 260) Web Interface Authentication Bypass Vulnerability. CVE-2004-2071. Webapps exploit for php p... |
| id | EDB-ID:23687 |
| last seen | 2016-02-02 |
| modified | 2004-02-12 |
| published | 2004-02-12 |
| reporter | Ziv Kamir |
| source | https://www.exploit-db.com/download/23687/ |
| title | Macallan Mail Solution Macallan Mail Solution 2.8.4.6 Build 260 - Web Interface Authentication Bypass Vulnerability |
References
- http://secunia.com/advisories/10861
- http://secunia.com/advisories/10861
- http://securitytracker.com/id?1009030
- http://securitytracker.com/id?1009030
- http://www.osvdb.org/3926
- http://www.osvdb.org/3926
- http://www.securityfocus.com/bid/9646
- http://www.securityfocus.com/bid/9646
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15194
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15194
- https://testzone.secunia.com/advisories/10861
- https://testzone.secunia.com/advisories/10861