CVE-2003-1481
NONE EPSS 76.3%
Published Dec 31, 200322y ago · Modified Jun 16, 20262w ago
Published Dec 31, 2003 22y ago
Last Modified Jun 16, 2026 2w ago
Description
CommuniGate Pro 3.1 through 4.0.6 sends the session ID in the referer field for an HTTP request for an image, which allows remote attackers to hijack mail sessions via an e-mail with an IMG tag that references a malicious URL that captures the referer.
Threat Intelligence
EPSS Exploit Probability
76.3% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available
Weaknesses 1
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Information Exposure
Affected Products 14
| Vendor | Product | Version | Range |
|---|---|---|---|
| stalker | communigate_pro | 3.1 | any |
| stalker | communigate_pro | 3.2.4 | any |
| stalker | communigate_pro | 3.2_b5 | any |
| stalker | communigate_pro | 3.2_b7 | any |
| stalker | communigate_pro | 3.3.2 | any |
| stalker | communigate_pro | 3.3_b1 | any |
| stalker | communigate_pro | 3.3_b2 | any |
| stalker | communigate_pro | 3.4_b3 | any |
| stalker | communigate_pro | 4.0.1 | any |
| stalker | communigate_pro | 4.0.2 | any |
| stalker | communigate_pro | 4.0.3 | any |
| stalker | communigate_pro | 4.0.6 | any |
| stalker | communigate_pro | 4.0_b2 | any |
| stalker | communigate_pro | 4.0_b3 | any |
References 4
- securityreason.com http://securityreason.com/securityalert/3290
- securityfocus.com http://www.securityfocus.com/archive/1/320438
- securityfocus.com http://www.securityfocus.com/bid/7501
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/11932
Remediation
- securityfocus.com http://www.securityfocus.com/bid/7501