CyberSec.Space Logo
Back to CVE Browser

CVE-2003-1192

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1460%
EPSS Percentile40.75th
PublishedNov 3, 2003
Last ModifiedApr 16, 2026

Vulnerability Description

Stack-based buffer overflow in IA WebMail Server 3.1.0 allows remote attackers to execute arbitrary code via a long GET request.

Affected Platforms (CPE)

πŸ“¦
Truenorth Software

Ia Webmail Server

= 3.0
πŸ“¦
Truenorth Software

Ia Webmail Server

= 3.1

References & Advisories

πŸ”— http://secunia.com/advisories/10107
πŸ”— http://securitytracker.com/id?1008075
πŸ”— http://www.derkeiler.com/Mailing-Lists/VulnWatch/2003-11/0001.html
πŸ”— http://www.elitehaven.net/iawebmail.txt
πŸ”— http://www.osvdb.org/2757
πŸ”— http://www.securiteam.com/windowsntfocus/6B002158UQ.html
πŸ”— http://www.securityfocus.com/bid/8965
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/13580

Related Vulnerabilities

CVE-2008-49329.0

webmail/modules/filesystem/edit.php in U-Mail Webmail server 4.91 allows remote attackers to overwrite arbitrary files via an abso...

CVE-2019-120958.8

Horde Trean, as used in Horde Groupware Webmail Edition through 5.2.22 and other products, allows CSRF, as demonstrated by the tre...

CVE-2004-24957.8

The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service ...

CVE-2013-60286.8

Multiple cross-site request forgery (CSRF) vulnerabilities in Atmail Webmail Server before 7.2 allow remote attackers to hijack th...