CVE Vulnerabilities

CVE-2002-1434

Published: Apr 11, 2003 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Multiple cross-site scripting (XSS) vulnerabilities in the Web mail module of Kerio MailServer 5.0 allow remote attackers to execute HTML script as other users via certain URLs.

Affected Software

Name Vendor Start Version End Version
Kerio_mailserver Kerio 5.0 5.0
Kerio_mailserver Kerio 5.1 5.1
Kerio_mailserver Kerio 5.1.1 5.1.1

References