Vulnerabilities > Amax Information Technologies > Magic Winmail Server > 4.2

DATE	CVE	VULNERABILITY TITLE	RISK
2005-11-19	CVE-2005-3692	Input Validation vulnerability in Amax Information Technologies Magic Winmail Server 4.2 Cross-site scripting (XSS) vulnerability in AMAX Magic Winmail Server 4.2 (build 0824) and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) retid parameter in badlogin.php, (2) Content-Type headers in HTML mails, and (3) HTML mail attachments. network amax-information-technologies	4.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.