Vulnerabilities > SUN > ONE Messaging Server > 6.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-01-28 | CVE-2004-2766 | Information Exposure vulnerability in SUN Iplanet Messaging Server and ONE Messaging Server Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02 allows remote attackers to obtain unspecified "access" to e-mail via a crafted e-mail message, related to a "session hijacking" issue, a different vulnerability than CVE-2005-2022 and CVE-2006-5486. | 4.3 |
2010-01-28 | CVE-2004-2765 | Cross-Site Scripting vulnerability in SUN Iplanet Messaging Server and ONE Messaging Server Cross-site scripting (XSS) vulnerability in Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via a crafted e-mail message, a different vulnerability than CVE-2005-2022 and CVE-2006-5486. | 4.3 |