Openfind's Mail2000 does not properly validate email atachments, allowing unauthenticated remote attackers to inject JavaScript code within the attachment and perform Stored Cross-site scripting attacks.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: twcert
Published: 2024-07-15T08:00:31.584Z
Updated: 2024-08-01T21:41:04.575Z
Reserved: 2024-07-15T03:34:24.222Z
Link: CVE-2024-6740
Vulnrichment
Updated: 2024-08-01T21:41:04.575Z
NVD
Status : Analyzed
Published: 2024-07-15T08:15:03.087
Modified: 2024-07-16T18:04:27.443
Link: CVE-2024-6740
Redhat
No data.