| VID |
22343 |
| Severity |
30 |
| Port |
4096,32000 |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
A version of IceWarp Web Mail which is older than version 5.3.3 is detected as running on the host. IceWarp Web Mail is a Web mail server for Microsoft Windows platforms. IceWarp versions prior to 5.3.3 are vulnerable to multiple vulnerabilities as follows:
1) HTML injection vulnerabilities in "login.html", "accountsettings_add.html", "calendar_addnote.html", "calendar_addtask.html", and "calendar_addevent.html".
2) Web Mail user path disclosure vulnerability in "calendar_d.html", "calendar_m.html", "calendar_w.html" and "calendar_y.html".
3) Password encryption weakness in the users.cfg, settings.cfg, users.dat and user.dat files.
4) Arbitrary file creation vulnerability in "accountsettings_add.html".
5) Arbitrary file disclosure vulnerability in "importaction.html".
* Note: This check solely relied on the version number of the remote IceWarp Web Mail server to assess this vulnerability, so this might be a false positive.
* References:
http://archives.neohapsis.com/archives/bugtraq/2005-01/0318.html
* Platforms Affected:
IceWarp Software, IceWarp versions prior to 5.3.3
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of IceWarp Web Mail (5.3.3 or later), available from the IceWarp Download Web page at http://www.icewarp.com/ |
| Related URL |
CVE-2005-0320,CVE-2005-0321,CVE-2005-0322 (CVE) |
| Related URL |
12396 (SecurityFocus) |
| Related URL |
19147,19152,19153,19157,19158 (ISS) |
|
