SurgeMail Webmail Unspecified Security Issue

2004-12-23T04:01:48
ID OSVDB:12559
Type osvdb
Reporter NetWin()
Modified 2004-12-23T04:01:48

Description

Vulnerability Description

SurgeMail contains a flaw that may allow a malicious user to exploit an unspecified error in the Webmail functionality. The issue is triggered when the version is old occurs. It is possible that the flaw may allow unknown resulting in a loss of confidentiality, integrity, and/or availability.

Solution Description

Upgrade to version 2.2c9 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

SurgeMail contains a flaw that may allow a malicious user to exploit an unspecified error in the Webmail functionality. The issue is triggered when the version is old occurs. It is possible that the flaw may allow unknown resulting in a loss of confidentiality, integrity, and/or availability.

References:

Vendor URL: http://www.netwinsite.com/surgemail/ Secunia Advisory ID:13621