CVE-2000-0397

Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 15/05/2000 Updated: 10/09/2008

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

The EMURL web-based email account software encodes predictable identifiers in user session URLs, which allows a remote malicious user to access a user's email account.

Vulnerable Product	Search on Vulmon	Subscribe to Product
seattle lab software emurl 2.0

source: wwwsecurityfocuscom/bid/1203/info Emurl software creates a unique identifier for each user, based on their account name This identifier is encoded using the ascii value of each character in the account name and augmented by its position By using a specific URL along with a user's identifier, it is possible to retreive that users ...

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2000-05/0160.html http://www.securityfocus.com/bid/1203 https://nvd.nist.gov https://www.exploit-db.com/exploits/19914/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2000-0397

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect