Sun JavaMail 1.3 – API MimeMessage Infromation Disclosure

Sun JavaMail 1.3 – API MimeMessage Infromation Disclosure

漏洞ID 1055114 漏洞类型
发布时间 2005-05-19 更新时间 2005-05-19
图片[1]-Sun JavaMail 1.3 – API MimeMessage Infromation Disclosure-安全小百科CVE编号 N/A
图片[2]-Sun JavaMail 1.3 – API MimeMessage Infromation Disclosure-安全小百科CNNVD-ID N/A
漏洞平台 JSP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/25685
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/13683/info

The MimeMessage method in the Sun JavaMail API does not perform sufficient validation on message number values that are passed to the method during requests. An attacker that can successfully authenticate to an email server implementation that is written using the Sun JavaMail API, may exploit this issue to make requests for arbitrary email messages that are stored on the server. 

http://www.example.com/ReadMessage.jsp?msgno=10001
http://www.example.com/ReadMessage.jsp?msgno=10002

相关推荐: Gamespy 3d IRC Client Remote Buffer Overflow Vulnerability

Gamespy 3d IRC Client Remote Buffer Overflow Vulnerability 漏洞ID 1099485 漏洞类型 Boundary Condition Error 发布时间 2003-09-30 更新时间 2003-09…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享