CVE-2004-1673

Published: Oct 12, 2004Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

accountsettings_add.html in Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 and possibly other versions allow remote attackers to create text files with arbitrary content via the accountid parameter.

Affected (3)

Products: Icewarp: Web Mail

Icewarp

1 product

Web Mail

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Icewarp Web Mail	Version 3.3.2
Icewarp Web Mail	Version 5.2.7
Icewarp Web Mail	Version 5.2.8

References (8)

http://marc.info/?l=bugtraq&m=109483971420067&w=2

Source: cve@mitre.org

http://secunia.com/advisories/12789

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://www.securityfocus.com/bid/11371

Source: cve@mitre.org

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/17317

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=109483971420067&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/12789

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

http://www.securityfocus.com/bid/11371

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/17317

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.