Vulners
Lucene search
Symantec PGP Universal Web Messenger Unauthorized Access
🗓️ 15 Feb 2014 00:00:00Reported by Richard O'DonnellType 
packetstorm🔗 packetstormsecurity.com👁 45 Views
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | CVE-2014-1643 | 7 Feb 201402:00 | – | cve |
 | CVE-2014-1643 | 7 Feb 201402:00 | – | cvelist |
 | EUVD-2014-1717 | 7 Oct 202500:30 | – | euvd |
 | CVE-2014-1643 | 7 Feb 201404:52 | – | nvd |
 | Code injection | 7 Feb 201404:52 | – | prion |
 | Symantec Encryption Management Server Web Email Protection View User’s Email | 5 Feb 201408:00 | – | symantec |
 | Symantec Encryption Management Server < 3.3.2 Information Disclosure | 14 Feb 201400:00 | – | nessus |
`Vulnerability title: Unauthorised Access To Other Users Email Messages
in Symantec PGP Universal Web Messenger
CVE: CVE-2014-1643
Vendor: Symantec
Product: PGP Universal Web Messenger
Affected version: All Prior to 3.3.2
Fixed version: 3.3.2
Reported by: Richard O'Donnell
Details:
Authenticated Web Messenger users are able to view other users email
messages, by following these steps:
1) Log into the Web Messenger console
2) View the list of sent emails
3) Click on any of the sent emails
4) Click on the `Print' option and then copy the URL from the page that
appears.
The URL will look similar to this:
https://x.x.x.x/b/ps.e?sid=BoomerangMail:72e56j3a-a3r6-5d43-6ef4-aae9c23422ca&showScrollbars=true&dialogId=SentPrintableView1747635619&OWASP_CSRFTOKEN=M22N-J4L3-R3T2-P1AZ-TP1Q-TEFG-IUGH-N6EF
5) Using this URL, brute-force the following part of the `sid' parameter:
72e56j3a-a3r6-5d43-6ef4-aae9c23422ca
6) Upon identifying a valid value, access to the corresponding email
message will be obtained.
Although there is a risk of obtaining unauthorised access to another
users email, the likelihood of successfully brute-forcing a correct
`sid' value is considered low, due to its complexity.
It is also noted that encryption of messages was not enabled when this
issue was identified and no additional testing was performed with this
option enabled.
Further details at:
http://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-1643/
Copyright:
Copyright (c) Portcullis Computer Security Limited 2014, All rights
reserved worldwide. Permission is hereby granted for the electronic
redistribution of this information. It is not to be edited or altered in
any way without the express written consent of Portcullis Computer
Security Limited.
Disclaimer:
The information herein contained may change without notice. Use of this
information constitutes acceptance for use in an AS IS condition. There
are NO warranties, implied or otherwise, with regard to this information
or its use. Any use of this information is at the user's risk. In no
event shall the author/distributor (Portcullis Computer Security
Limited) be held liable for any damages whatsoever arising out of or in
connection with the use or spread of this information.
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
15 Feb 2014 00:00Current
0.7Low risk
Vulners AI Score0.7
EPSS0.00124