Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

iMailv5.txt

🗓️ 04 Jan 2000 00:00:00Reported by SimonType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 40 Views

Malicious users can access emails of all others on iMail Server 5.0 due to improper account storage.

Code
`  
0oooop  
( / Six Toed  
) / Security Advisory  
(_<  
  
Date: 2000, 03/01  
Affected Software: iMail Server 5.0  
Platform: Windows NT 4.0 SP 6a  
  
*Problem*  
A malicous user can read and send emails as any other user on  
the system.  
  
*How*  
The issue lies in how iMail handles the creating of new email  
accounts, and how it stores them.  
  
When iMail is default installed all new email accounts are  
stored in the same directory. So, the directory that held the  
email  
account for [email protected] would be stored in the same  
directory as [email protected].  
  
*Exploit*  
Now if [email protected] has mail administration turned on,  
user could create a new account under his domain  
(otherdomain.com)  
for admin, and since it iMail would store it in the same  
directory as the as the [email protected] account, they would  
then become  
one in the same. Thus allowing [email protected] to read ALL  
incoming emails to [email protected] and all other 'admin' users  
on  
the system by sharing the same 'admin' folder. As you can  
imagine, this could pose a serious risk to security.  
  
*Fix*  
When creating a new email account for a domain in iMail  
Administrator, choose a custom path to save all accounts to.  
Example:  
D:\IMAIL\newdomain.com  
  
As long as an administrator is keeping his eye on the ball this  
little problem can be avoided.  
  
*Notes*  
I have not tested this problem on any earlier version of  
iMail... Other versions are probably affected too. If you find  
out they  
are please email me.  
  
*Shouts*  
Lupus Gentry, Af8e 4f5, Logical Gambit, RandomS, knarph,  
nulltone, Strick,  
Ross, Everyone @ yak.net, and the girl who crushed Lupus's heat  
today, this  
means you Anna.  
  
------------------------  
Advisory By Simon(Says)  
Six Toed 2000, 01/03  
[email protected]  
VM. 1-877-815-7880 x916  
------------------------  
  
EOF  
  
  
________________________________________________  
Get your own "800" number - Free  
Free voicemail, fax, email, and a lot more  
http://www.ureach.com/reg/tag  
--_uReach_com_26916734994695633528830xxx_--  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
04 Jan 2000 00:00Current
7.4High risk
Vulners AI Score7.4
imail server securityemail account vulnerabilitywindows nt platformmalicious user accessaccount storage issueemail directory path.
40