CVE-2006-4658 | Vulnerability Database | Aqua Security

Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 uses sequential message numbers in generated URLs that are not filtered if the user replies to a message, which might allow remote attackers to determine mail usage patterns.

Affected Software

Name	Vendor	Start Version	End Version
Panda_platinum_internet_security	Panda	2006_10.02.01 (including)	2006_10.02.01 (including)
Panda_platinum_internet_security	Panda	2007_11.00.00 (including)	2007_11.00.00 (including)

References

http://secunia.com/advisories/21769
http://securityreason.com/securityalert/1524
http://www.security.nnov.ru/advisories/pandais.asp
http://www.securityfocus.com/archive/1/445479/100/0/threaded
http://www.securityfocus.com/bid/19891
http://secunia.com/advisories/21769
http://securityreason.com/securityalert/1524
http://www.security.nnov.ru/advisories/pandais.asp
http://www.securityfocus.com/archive/1/445479/100/0/threaded
http://www.securityfocus.com/bid/19891

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-4658
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html