Security Advisory

CVE-2000-0716

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2001-01-22 05:00:00

Last updated 2024-08-08 05:28:41

Assigner mitre

State PUBLISHED

Description

WorldClient email client in MDaemon 2.8 includes the session ID in the referer field of an HTTP request when the user clicks on a URL, which allows the visited web site to hijack the session ID and read the users email.

← Browse all CVEs View on cve.org ↗