CVE-2004-1673

high

Description

accountsettings_add.html in Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 and possibly other versions allow remote attackers to create text files with arbitrary content via the accountid parameter.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/17317

http://www.securityfocus.com/bid/11371

http://marc.info/?l=bugtraq&m=109483971420067&w=2

Details

Source: Mitre, NVD

Published: 2004-10-12

Updated: 2017-07-11

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3