JVN#85821104 Active! mail 2003 session ID disclosure vulnerability

2009-12-08T00:00:00
ID JVN:85821104
Type jvn
Reporter Japan Vulnerability Notes
Modified 2009-12-24T00:00:00

Description

## Description

Active! mail 2003 from TransWARE Co. is a web-based email software. Active! mail 2003 contains a vulnerability in which session IDs may be disclosed.

## Impact

A remote attacker could impersonate a user of Active! mail 2003. As a result, the user's email may be viewed or configurations may be modified.

## Solution

Update the Software
Update to the latest version according to the information provided by the vendor.

## Products Affected

  • Active! mail 2003 Build 2003.0139.0871 and earlier

The above products are affected by this vulnerability when the mobile function is enabled.