alt-n worldclient vulnerabilities and exploits

(subscribe to this query)

Directory traversal vulnerability in WorldClient.cgi in WorldClient for Alt-N Technologies MDaemon 5.0.5.0 and previous versions allows local users to delete arbitrary files via a ".." (dot dot) in the Attachments parameter.

Alt-n Worldclient 5.0.1 Alt-n Worldclient 5.0.2 Alt-n Worldclient 5.0.5 Alt-n Worldclient 5.0 Alt-n Worldclient 5.0.3 Alt-n Worldclient 5.0.4

1 EDB exploit

WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote malicious users to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross...

Alt-n Mdaemon 8.1.3 Alt-n Worldclient 8.1.3

1 EDB exploit

WorldClient.dll in Alt-N MDaemon and WorldClient 8.1.3 trusts a Session parameter that contains a randomly generated session ID that is associated with a username, which allows remote malicious users to perform actions as other users by guessing or sniffing the random value.

Alt-n Mdaemon 8.1.3 Alt-n Worldclient 8.1.3

Cross-site scripting (XSS) vulnerability in Alt-N MDaemon WorldClient 10.0.2, when Internet Explorer 7 is used, allows remote malicious users to inject arbitrary web script or HTML via a crafted img tag.

Alt-n Worldclient 10.0.2

The WDaemon web server for WorldClient 2.1 allows remote malicious users to read arbitrary files via a .. (dot dot) attack.

Alt-n Worldclient 2.1

1 EDB exploit

Buffer overflow in WorldClient.cgi in WorldClient in Alt-N Technologies MDaemon 5.0.5.0 and previous versions allows local users to execute arbitrary code via a long folder name (NewFolder parameter).

Alt-n Mdaemon 5.0.2 Alt-n Mdaemon 5.0.3 Alt-n Mdaemon 5.0 Alt-n Worldclient 5.0 Alt-n Mdaemon 5.0.1 Alt-n Mdaemon 5.0.4 Alt-n Mdaemon 5.0.5

1 EDB exploit

Stack-based buffer overflow in FORM2RAW.exe in Alt-N MDaemon 6.5.2 up to and including 6.8.5 allows remote malicious users to execute arbitrary code via a long From parameter to Form2Raw.cgi.

Alt-n Mdaemon 6.7.5 Alt-n Mdaemon 6.7.9 Alt-n Mdaemon 6.8.0 Alt-n Mdaemon 6.8.1 Alt-n Mdaemon 6.8.2 Alt-n Mdaemon 6.8.3 Alt-n Mdaemon 6.8.4 Alt-n Mdaemon 6.5.2 Alt-n Mdaemon 6.8.5

3 EDB exploits

Unspecified vulnerability in WorldClient in Alt-N Technologies MDaemon prior to 9.50 has unknown impact and attack vectors related to a "JavaScript exploit."

1 2 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook