MailEnable Enterprise Premium 10.23 was vulnerable to XML External Entity Injection (XXE) attacks that could be exploited by an unauthenticated user. It was possible for an attacker to use a vulnerability in the configuration of the XML processor to read any file on the host system. Because all credentials were stored in a cleartext file, it was possible to steal all users' credentials (including the highest privileged users).
oryginał ENCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HMailenable
APPMailenable6.0 – 6.90 (bez)7.0 – 7.62 (bez)8.00 – 8.64 (bez)9.0 – 9.83 (bez)10.00 – 10.24 (bez)
Powiązane podatności
XSS umożliwiający RCE w MailEnable przed wersją 10
MailEnable before 8.60 allows Directory Traversal for reading the messages of other users, uploading files, an...
MailEnable before 8.60 allows Privilege Escalation because admin accounts could be created as a consequence of...
MailEnable before 8.60 allows XXE via an XML document in the request.aspx Options parameter.
MailEnable Enterprise Premium 10.55 and earlier contains an improper authorization vulnerability in the WebAdm...