CVE-2004-1720

Merak Mail Server 5.2.7 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1720. PoCs published by Criolabs.

AI-analyzed exploit summary The provided text describes multiple vulnerabilities in Merak Mail Server's webmail package, including XSS, HTML injection, PHP source disclosure, and SQL injection. It references CVE-2004-1720 but lacks actual exploit code, only providing a placeholder URL path.

Description

The (1) address.html and possibly (2) calendar.html pages in Merak Mail Server 5.2.7 allow remote attackers to gain sensitive information via an invalid HTTP request, which reveals the installation path. NOTE: it is unclear whether the calendar.html is an exposure, since the path is leaked in web logs that may only be available to the administrators, who would have access to the path through legitimate means.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Criolabs · textwebappsphp

https://www.exploit-db.com/exploits/24381

View Code ZIP pw:eip

The provided text describes multiple vulnerabilities in Merak Mail Server's webmail package, including XSS, HTML injection, PHP source disclosure, and SQL injection. It references CVE-2004-1720 but lacks actual exploit code, only providing a placeholder URL path.

Classification

Writeup 90%

Attack Type

Xss | Sqli | Info Leak

Complexity

Trivial

Reliability

Theoretical

Target: Merak Mail Server < 7.5.2

No auth needed

Prerequisites: access to the vulnerable webmail interface

MITRE ATT&CK