Kerio MailServer < 6.6.2 (KSEC-2008-12-16-01) Multiple XSS

Medium Nessus Network Monitor Plugin ID 4797


The remote mail server is affected by several cross-site scripting vulnerabilities.


According to its banner, the remote host is running a version of Kerio MailServer prior to 6.6.2. Multiple files in such versions are reportedly affected by cross-site scripting vulnerabilities.

- The application fails to sanitize input to the 'folder' parameter of the 'mailCompose.php' script as well as the 'daytime' parameter of the 'calendarEdit.php' script before using it to generate dynamic HTML.

- Content passed to 'sent' parameter of the 'error413.php' script is not sanitized before being returned to the user.

Successful exploitation of these issues could lead to execution of arbitrary HTML and script code in a user's browser within the security context of the affected site.


Upgrade to versaion 6.6.2 or higher.

See Also

Plugin Details

Severity: Medium

ID: 4797

Family: SMTP Servers

Published: 2008/12/22

Updated: 2019/03/06

Dependencies: 2004, 2005

Nessus ID: 35258

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5.8

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

CVSS v3.0

Base Score: 4.8

Temporal Score: 4.5

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:kerio:kerio_mailserver

Reference Information

CVE: CVE-2008-5760, CVE-2008-5769

BID: 32863