CVE-2004-2766
iPlanet Messaging Server 5.2 - Unauthenticated Email Access via Crafted Email Message
Title source: llmDescription
Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02 allows remote attackers to obtain unspecified "access" to e-mail via a crafted e-mail message, related to a "session hijacking" issue, a different vulnerability than CVE-2005-2022 and CVE-2006-5486.
References (2)
Core 2
Core References
Patch, Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201180-1
Patch x_refsource_confirm
http://sunsolve.sun.com/search/document.do?assetkey=1-21-116568-55-1
Scores
EPSS
0.0023
EPSS Percentile
45.7%
Details
CWE
CWE-200
Status
published
Products (2)
sun/iplanet_messaging_server
5.2
sun/one_messaging_server
6.1
Published
Jan 28, 2010
Tracked Since
Feb 18, 2026