Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

IMail < 7.0.6 Account Hijacking

Medium

Synopsis

The remote host is running the IMail web interface.

Description

The remote host is running the IMail web interface. There is a bug in the version being run which may allow an attacker to read the mailboxes of the users by sending them a malformed HTML email containing a link to an image hosted on a rogue web server.

Solution

Upgrade to IMail 7.0.6 or higher.