Unauthorized access to MDaemon Messaging Server
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | N/A |
| CWE-ID | CWE-284 |
| Exploitation vector | Network |
| Public exploit | Public exploit code for vulnerability #1 is available. |
| Vulnerable software Subscribe |
MDaemon Server applications / Mail servers |
| Vendor | Alt-N |
Security Bulletin
This security bulletin contains one medium risk vulnerability.
1) Improper access control
EUVDB-ID: #VU335
Risk: Medium
CVSSv3.1: 8.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]
CVE-ID: N/A
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain administrative privileges within the application.
The vulnerability exists due to unknown error. A remote attacker can unauthorized access to administrative settings and users’ emails.
Successful exploitation of this vulnerability will allow a remote attacker to reconfigure the messaging server and read emails of all server users.
MitigationThis vulnerability is fixed in the following versions:
- MDaemon 11.0.4
- MDaemon 12.0.5 BBE
- MDaemon 12.0.5
- MDaemon 12.5.8
- MDaemon 13.0.2
MDaemon: 11.0.0 - 13.0.1
External linkshttp://www.altn.com/Support/SecurityUpdate/MD070716_MDaemon_EN/
http://www.ccsoftware.ca/mdaemon/SecurityUpdate.cfm
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
