header-logo
Suggest Exploit
vendor:
Roxen Webmail Module
by:
SecurityFocus
7.5
CVSS
HIGH
Session Hijacking
287
CWE
Product Name: Roxen Webmail Module
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

IMHO Roxen Webmail Module Vulnerability

A vulnerability has been reported in the IMHO Roxen webmail module which may enable a malicious user of the webmail system to gain access to the account of another user. This issue is due to an error in configuration which may leak the REFERER for a session with the webmail system, which an attacker may use to access another webmail account. Login with an valid user/passwd, Logout and Goto URL : (((webmail_URL)))/(old_error,plain)/mail/error?error=1 This will cause the webserver to display a REFERER. This REFERER may be submitted to access another user's session.

Mitigation:

Ensure that the webmail module is configured correctly and that the REFERER is not leaked.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/5238/info

A vulnerability has been reported in the IMHO Roxen webmail module which may enable a malicious user of the webmail system to gain access to the account of another user. This issue is due to an error in configuration which may leak the REFERER for a session with the webmail system, which an attacker may use to access another webmail account. 

- Login with an valid user/passwd,
- Logout
- Goto URL : (((webmail_URL)))/(old_error,plain)/mail/error?error=1

This will cause the webserver to display a REFERER. This REFERER may be submitted to access another user's session.

Navigation

Suggest Exploit

Services By CQR