Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2009-4353
HistoryDec 17, 2009 - 6:00 p.m.

CVE-2009-4353

2009-12-1718:00:00
mitre
www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.9%

JSON

The Mobile Edition of TransWARE Active! mail 2003 build 2003.0139.0871 and earlier, and possibly other versions before 2003.0139.0911, does not remove the session ID in a Referer URL, which allows remote attackers to hijack web sessions via vectors such as an email with an embedded URL.

Related

cve 1
prion 1
jvn 1
nvd 1
cve
cve
CVE-2009-4353
2009-12-17 18:30:00
prion
prion
Code injection
2009-12-17 18:30:00
jvn
jvn
JVN#85821104 Active! mail 2003 session ID disclosure vulnerability
2009-12-08 00:00:00
nvd
nvd
CVE-2009-4353
2009-12-17 18:30:00

6.7 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.9%

JSON
Related for CVELIST:CVE-2009-4353
cve1prion1jvn1nvd1