| VID |
21426 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The IlohaMail, according to its version number, has an unspecified vulnerability.
IlohaMail is a webmail package written in PHP. IlohaMail versions prior to 0.8.14-rc1 are vulnerable to an unspecified vulnerability announced by the vendor. The cause and impact of this vulnerability is currently unknown. Due to the nature of the software, this vulnerability is likely remotely exploitable.
* Note: This check solely relied on the version number of the remote IlohaMail software to assess this vulnerability, so this might be a false positive.
* References:
http://sourceforge.net/project/shownotes.php?group_id=54027&release_id=288409
http://secunia.com/advisories/13413/
* Platforms Affected:
Ryo Chijiiwa, IlohaMail prior to 0.8.14-rc1
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of IlohaMail (0.8.14RC1 or later), available from the IlohaMail Download site at http://sourceforge.net/projects/ilohamail/ |
| Related URL |
CVE-2004-2500 (CVE) |
| Related URL |
11872 (SecurityFocus) |
| Related URL |
18426 (ISS) |
|
