CVE-2003-1481
published 2003-12-31CVE-2003-1481: CommuniGate Pro 3.1 through 4.0.6 sends the session ID in the referer field for an HTTP request for an image, which allows remote attackers to hijack mail…
PriorityP420medium5.8CVSS 2.0
AVNACMAuNCPIPAN
EXPLOIT
EPSS
1.84%
76.2th percentile
CommuniGate Pro 3.1 through 4.0.6 sends the session ID in the referer field for an HTTP request for an image, which allows remote attackers to hijack mail sessions via an e-mail with an IMG tag that references a malicious URL that captures the referer.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
| stalker | communigate_pro | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://securityreason.com/securityalert/3290http://www.securityfocus.com/archive/1/320438http://www.securityfocus.com/bid/7501https://exchange.xforce.ibmcloud.com/vulnerabilities/11932http://securityreason.com/securityalert/3290http://www.securityfocus.com/archive/1/320438http://www.securityfocus.com/bid/7501https://exchange.xforce.ibmcloud.com/vulnerabilities/11932
2003-12-31
Published