Lucene search
PRIOn knowledge basePRION:CVE-2010-0464HistoryJan 29, 2010 - 6:30 p.m.
Cross site request forgery (csrf)
2010-01-2918:30:00
PRIOn knowledge base
www.prio-n.com
1
6.9 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
73.9%
Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests.
| CPE | Name | Operator | Version |
|---|---|---|---|
| webmail | eq | 0.1 rc1 | |
| webmail | eq | 0.1 20050820 | |
| webmail | eq | 0.1 20051007 | |
| webmail | eq | 0.1 | |
| webmail | eq | 0.1 beta2 | |
| webmail | eq | 0.1 beta | |
| webmail | eq | 0.1 20050811 | |
| webmail | eq | 0.3 rc1 | |
| webmail | eq | 0.2 stable | |
| webmail | eq | 0.2 alpha |
Related
openvas
openvas
Mandriva Update for roundcubemail MDVSA-2010:048 (roundcubemail)
2010-03-02 00:00:00
Mandriva Update for roundcubemail MDVSA-2010:048 (roundcubemail)
2010-03-02 00:00:00
Fedora Update for roundcubemail FEDORA-2010-1399
2010-03-02 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: roundcubemail-0.3.1-2.fc11
2010-02-02 20:42:57
[SECURITY] Fedora 12 Update: roundcubemail-0.3.1-2.fc12
2010-02-02 20:41:40
debiancve
debiancve
CVE-2010-0464
2010-01-29 18:30:00
securityvulns
securityvulns
[ MDVSA-2010:048 ] roundcubemail
2010-02-25 00:00:00
debian
debian
[Backports-security-announce] Security Update for roundcube
2010-02-17 14:48:23
[Backports-security-announce] Security Update for roundcube
2010-02-17 14:48:07
[Backports-security-announce] Security Update for roundcube
2010-02-17 14:48:07
nessus
nessus
Fedora 12 : roundcubemail-0.3.1-2.fc12 (2010-1385)
2010-07-01 00:00:00
Fedora 11 : roundcubemail-0.3.1-2.fc11 (2010-1399)
2010-07-01 00:00:00
ubuntucve
ubuntucve
CVE-2010-0464
2010-01-29 00:00:00
cve
cve
CVE-2010-0464
2010-01-29 18:30:00
6.9 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
73.9%
Related for PRION:CVE-2010-0464