CVE-2001-1211
published 2001-12-31CVE-2001-1211: Ipswitch IMail 7.0.4 and earlier allows attackers with administrator privileges to read and modify user alias and mailing list information for other domains…
PriorityP424high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
3.00%
85.7th percentile
Ipswitch IMail 7.0.4 and earlier allows attackers with administrator privileges to read and modify user alias and mailing list information for other domains hosted by the same server via the (1) aliasadmin or (2) listadm1 CGI programs, which do not properly verify that an administrator is the administrator for the target domain.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ipswitch | imail | — | — |
| ipswitch | imail | — | — |
| ipswitch | imail | — | — |
| ipswitch | imail | — | — |
| ipswitch | imail | — | — |
| ipswitch | imail | — | — |
| ipswitch | imail | — | — |
| ipswitch | imail | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://support.ipswitch.com/kb/IM-20011219-DM01.htmhttp://support.ipswitch.com/kb/IM-20020301-DM02.htmhttp://www.iss.net/security_center/static/7752.phphttp://www.securityfocus.com/archive/1/247786http://www.securityfocus.com/bid/3766http://support.ipswitch.com/kb/IM-20011219-DM01.htmhttp://support.ipswitch.com/kb/IM-20020301-DM02.htmhttp://www.iss.net/security_center/static/7752.phphttp://www.securityfocus.com/archive/1/247786http://www.securityfocus.com/bid/3766
2001-12-31
Published