CVE-2001-0857

Published: Mar 9, 2002

Modified: Aug 8, 2024

PUBLISHED

Description

Cross-site scripting vulnerability in status.php3 in Imp Webmail 2.2.6 and earlier allows remote attackers to gain access to the e-mail of other users by hijacking session cookies via the message parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

CLA-2001:437

vendor-advisory

x_refsource_CONECTIVA

imp-css-steal-cookies(7496)

vdb-entry

x_refsource_XF

20011109 Imp Webmail session hijacking vulnerability

mailing-list

x_refsource_BUGTRAQ

CSSA-2001-039.0

vendor-advisory

x_refsource_CALDERA

20011110 IMP 2.2.7 (SECURITY) released

mailing-list

x_refsource_BUGTRAQ

668

vdb-entry

x_refsource_OSVDB

3525

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2001-0857

Description

Affected Products

References