Detections
Analytics

IceWarp Merak WebMail Server < 9.4.2 Multiple Vulnerabilities

medium Nessus Plugin ID 38717

Language:

Synopsis

The remote webmail server is affected by multiple vulnerabilities.

Description

The remote host is running IceWarp WebMail Server - a webmail server for Windows and Linux.

According to its banner, the version of IceWarp installed on the remote host is earlier than 9.4.2. Such versions may reportedly be affected by multiple vulnerabilities :

 - A SQL injection vulnerability exists in the search form of the web-based groupware component. (CVE-2009-1468)

 - A cross-site scripting vulnerability exists because the application fails to properly sanitize HTML emails. An attacker can exploit this flaw through the 'cleanHTML()' function of the 'html/webmail/server/inc/tools.php' script. (CVE-2009-1467)

 - A cross-site scripting vulnerability exists because the application fails to properly sanitize RSS feeds. An attacker can exploit this flaw through the 'cleanHTML()' function of the 'html/webmail/server/inc/rss/rss.php' script. (CVE-2009-1467)

 - An input validation flaw exists in the 'Forgot Password' function on the login page. (CVE-2009-1469)

 - A specially crafted HTTP request may allow an attacker to disclose the contents of PHP files.

An attacker could exploit these flaws to steal user-based credentials, create arbitrary files, or possibly execute arbitrary code subject to the privileges of the affected application.

Solution

Upgrading to IceWarp 9.4.2 or later reportedly fixes the problems.

See Also

http://www.nessus.org/u?866c85a5

http://www.nessus.org/u?df2ecfe5

http://www.nessus.org/u?f6eab1aa

http://www.nessus.org/u?a296894e

Plugin Details

Severity: Medium

ID: 38717

File Name: icewarp_9_4_2.nasl

Version: 1.18

Type: remote

Family: CGI abuses

Published: 5/8/2009

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Medium

Base Score: 5.8

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:P

Vulnerability Information

CPE: cpe:/a:icewarp:webmail

Required KB Items: www/icewarp

Exploit Available: true

Exploit Ease: Exploits are available

Reference Information

CVE: CVE-2009-1467, CVE-2009-1468, CVE-2009-1469

BID: 34820, 34823, 34825, 34827

CWE: 79, 89, 94

SECUNIA: 34912