Vulnerabilities > CVE-2005-0314 - Multiple vulnerability in Magic Winmail Server

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

amax-information-technologies

NVD

Published: 2005-01-27

Updated: 2017-07-11

Summary

Cross-site scripting (XSS) vulnerability in user.php in Magic Winmail Server 4.0 Build 1112 allows remote attackers to inject arbitrary web script or HTML via the personal information fields.

Vulnerable Configurations

Part	Description	Count
Application	Amax_Information_Technologies Amax Information Technologies Magic Winmail Server 4.0	1

References

http://marc.info/?l=bugtraq&m=110685011825461&w=2
http://secunia.com/advisories/14053
http://securitytracker.com/id?1013017
http://www.securityfocus.com/bid/12388
https://exchange.xforce.ibmcloud.com/vulnerabilities/19113