7 matches found
CVE-2008-6967
The CVE-2008-6967 entry concerns Alt-N MDaemon WorldClient in versions up to 10.0.1, with multiple unspecified vulnerabilities in WorldClient potentially involving cross-site scripting (XSS). The connected documents corroborate affected product (MDaemon/WorldClient), imply an XSS-related risk, an...
CVE-2008-6893
The CVE-2008-6893 entry describes a Cross-site scripting (XSS) vulnerability in Alt-N MDaemon WorldClient 10.0.2 when used with Internet Explorer 7. An attacker can inject arbitrary web script or HTML via a crafted img tag. The base information indicates a client/browser interaction enabling scri...
CVE-2005-4209
CVE-2005-4209 concerns WorldClient webmail in Alt-N MDaemon 8.1.3. The issue arises from script tags in the Subject header, enabling cross‑site scripting that can prevent users from accessing their Inbox. The vulnerability is described as impacting availability (partial) without affecting confide...
CVE-2000-0660
CVE-2000-0660 affects the WDaemon web server for WorldClient 2.1, allowing remote attackers to read arbitrary files through a directory-traversal (..). The underlying issue is improper handling of path components, enabling unauthorized file access. Exploitation details are not provided in the CVE...
CVE-2005-4266
The CVE-2005-4266 issue affects Alt-N MDaemon/WorldClient (WorldClient.dll) where WorldClient 8.1.3 trusts a Session parameter containing a randomly generated session ID linked to a username. This enables remote attackers to impersonate other users by guessing or sniffing the session value. Conne...
CVE-2002-1740
The CVE-2002-1740 entry describes a buffer overflow in WorldClient.cgi (WorldClient) of Alt-N Technologies MDaemon
CVE-2002-1741
CVE-2002-1741 describes a directory traversal vulnerability in WorldClient.cgi within WorldClient for Alt-N Technologies MDaemon