MidnightBSD

Advisories for open_webmail

CVE-2002-1385 HIGH

openwebmail_init in Open WebMail 1.81 and earlier allows local users to execute arbitrary code via .. (dot dot) sequences in a login name, such as the name provided in the sessionid parameter for openwebmail-abook.pl, which is used to find a configuration file that specifies additional code to be executed.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
open_webmail open_webmail 1.8
open_webmail open_webmail 1.71
open_webmail open_webmail 1.7
open_webmail open_webmail 1.81
CVE-2002-2410 MEDIUM

openwebmail.pl in Open WebMail 1.7 and 1.71 reveals sensitive information in error messages and generates different responses whether a user exists or not, which allows remote attackers to identify valid usernames via brute force attacks and obtain certain configuration and version information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
open_webmail open_webmail 1.71
open_webmail open_webmail 1.7
CVE-2004-0520 MEDIUM

Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header, as demonstrated using read_body.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
squirrelmail squirrelmail 1.4.2
squirrelmail squirrelmail 1.2.7
squirrelmail squirrelmail 1.2.10
squirrelmail squirrelmail 1.4.1
squirrelmail squirrelmail 1.2.8
squirrelmail squirrelmail 1.2.5
squirrelmail squirrelmail 1.2.9
squirrelmail squirrelmail 1.2.4
open_webmail open_webmail 2.30
squirrelmail squirrelmail 1.2.2
squirrelmail squirrelmail 1.2.11
squirrelmail squirrelmail 1.2.0
squirrelmail squirrelmail 1.5_dev
open_webmail open_webmail 2.31
open_webmail open_webmail 2.32
squirrelmail squirrelmail 1.2.6
sgi propack 3.0
squirrelmail squirrelmail 1.2.1
squirrelmail squirrelmail 1.2.3
squirrelmail squirrelmail 1.4
squirrelmail squirrelmail 1.4.3_rc1
CVE-2004-0639 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in Squirrelmail 1.2.10 and earlier allow remote attackers to inject arbitrary HTML or script via (1) the $mailer variable in read_body.php, (2) the $senderNames_part variable in mailbox_display.php, and possibly other vectors including (3) the $event_title variable or (4) the $event_text variable.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
squirrelmail squirrelmail 1.4.2
squirrelmail squirrelmail 1.2.7
squirrelmail squirrelmail 1.2.10
squirrelmail squirrelmail 1.4.1
squirrelmail squirrelmail 1.2.8
squirrelmail squirrelmail 1.2.5
squirrelmail squirrelmail 1.2.9
squirrelmail squirrelmail 1.2.4
open_webmail open_webmail 2.30
squirrelmail squirrelmail 1.2.2
squirrelmail squirrelmail 1.2.11
squirrelmail squirrelmail 1.2.0
squirrelmail squirrelmail 1.5_dev
open_webmail open_webmail 2.31
open_webmail open_webmail 2.32
squirrelmail squirrelmail 1.2.6
sgi propack 3.0
squirrelmail squirrelmail 1.2.1
squirrelmail squirrelmail 1.2.3
squirrelmail squirrelmail 1.4
squirrelmail squirrelmail 1.4.3_rc1
CVE-2004-2284 HIGH

The read_list_from_file function in vacation.pl for OpenWebmail before 2.32 20040629 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename argument.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
open_webmail open_webmail 1.90
open_webmail open_webmail 1.8
open_webmail open_webmail 2.31
open_webmail open_webmail 2.32
open_webmail open_webmail 1.71
open_webmail open_webmail 2.20
open_webmail open_webmail 2.21
open_webmail open_webmail 1.7
open_webmail open_webmail 1.81
open_webmail open_webmail 2.30
CVE-2004-2458 MEDIUM

Open WebMail 2.30 and earlier, when use_syshomedir is disabled or create_syshomedir is enabled, creates new directories before authenticating, which allows remote attackers to create arbitrary directories.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
open_webmail open_webmail 1.90
open_webmail open_webmail 1.8
open_webmail open_webmail 1.71
open_webmail open_webmail 1.7
open_webmail open_webmail 1.81
open_webmail open_webmail 2.30
CVE-2005-0445 MEDIUM

Cross-site scripting (XSS) vulnerability in Open WebMail 2.x allows remote attackers to inject arbitrary HTML or web script via the domain name parameter (logindomain) in the login page.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
open_webmail open_webmail 2.50
open_webmail open_webmail 2.32
open_webmail open_webmail 2.01
open_webmail open_webmail 2.20
open_webmail open_webmail 2.21
open_webmail open_webmail 2.10
open_webmail open_webmail 2.30
open_webmail open_webmail 2.00
open_webmail open_webmail 2.40
open_webmail open_webmail 2.41
CVE-2005-1435 HIGH

Open WebMail (OWM) before 2.51 20050430 allows remote authenticated users to execute arbitrary commands via shell metacharacters in a filename.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
open_webmail open_webmail *
CVE-2005-2863 MEDIUM

Cross-site scripting (XSS) vulnerability in openwebmail-main.pl in OpenWebMail 2.41 allows remote attackers to inject arbitrary web script or HTML via the sessionid parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
open_webmail open_webmail 2.41
CVE-2006-2190 MEDIUM

Cross-site scripting (XSS) vulnerability in ow-shared.pl in OpenWebMail (OWM) 2.51 and earlier allows remote attackers to inject arbitrary web script or HTML via the sessionid parameter in (1) openwebmail-send.pl, (2) openwebmail-advsearch.pl, (3) openwebmail-folder.pl, (4) openwebmail-prefs.pl, (5) openwebmail-abook.pl, (6) openwebmail-read.pl, (7) openwebmail-cal.pl, and (8) openwebmail-webdisk.pl. NOTE: the openwebmail-main.pl vector is already covered by CVE-2005-2863.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
open_webmail open_webmail 1.71
open_webmail open_webmail 2.01
open_webmail open_webmail 2.10
open_webmail open_webmail 2.30
open_webmail open_webmail 2.00
open_webmail open_webmail 2.40
open_webmail open_webmail 1.90
open_webmail open_webmail 1.8
open_webmail open_webmail 2.50
open_webmail open_webmail 2.31
open_webmail open_webmail 2.32
open_webmail open_webmail 2.20
open_webmail open_webmail 2.21
open_webmail open_webmail *
open_webmail open_webmail 1.7
open_webmail open_webmail 1.81
open_webmail open_webmail 2.41
CVE-2006-3229 MEDIUM

Cross-site scripting (XSS) vulnerability in Open WebMail (OWM) 2.52, and other versions released before 05/12/2006, allows remote attackers to inject arbitrary web script or HTML via the (1) To and (2) From fields in openwebmail-main.pl, and possibly (3) other unspecified vectors related to "openwebmailerror calls that need to display HTML."

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
open_webmail open_webmail 1.71
open_webmail open_webmail 2.30
open_webmail open_webmail 1.90
open_webmail open_webmail 1.8
open_webmail open_webmail 2.5
open_webmail open_webmail 2.31
open_webmail open_webmail 2.32
open_webmail open_webmail 2.20
open_webmail open_webmail 2.21
open_webmail open_webmail *
open_webmail open_webmail 1.7
open_webmail open_webmail 1.81
open_webmail open_webmail 2.51
open_webmail open_webmail 2.41
CVE-2006-3233 MEDIUM

Cross-site scripting (XSS) vulnerability in openwebmail-read.pl in Open WebMail (OWM) 2.52, and other versions released before 06/18/2006, allows remote attackers to inject arbitrary web script or HTML via the from field. NOTE: some third party sources have mentioned the "to" and "from" fields, although CVE analysis shows that these are associated with the previous version, a different executable, and a different CVE.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
open_webmail open_webmail 1.71
open_webmail open_webmail 2.30
open_webmail open_webmail 1.90
open_webmail open_webmail 1.8
open_webmail open_webmail 2.5
open_webmail open_webmail 2.31
open_webmail open_webmail 2.32
open_webmail open_webmail 2.20
open_webmail open_webmail 2.21
open_webmail open_webmail *
open_webmail open_webmail 1.7
open_webmail open_webmail 1.81
open_webmail open_webmail 2.51
open_webmail open_webmail 2.41