The IMHO Webmail module 0.97.3 and earlier for Roxen leaks the REFERER from the browser's previous login session in an error page, which allows local users to read another user's inbox.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-11-16T21:17:00Z
Updated: 2024-09-16T23:40:38.467Z
Reserved: 2005-11-16T00:00:00Z
Link: CVE-2002-2165
Vulnrichment
No data.
NVD
Status : Modified
Published: 2002-12-31T05:00:00.000
Modified: 2024-11-20T23:43:01.263
Link: CVE-2002-2165
Redhat
No data.