CVE-2003-1481

NONE EPSS 76.3%
Published Dec 31, 200322y ago · Modified Jun 16, 20262w ago
Find Similar
Published Dec 31, 2003 22y ago
Last Modified Jun 16, 2026 2w ago

Description

CommuniGate Pro 3.1 through 4.0.6 sends the session ID in the referer field for an HTTP request for an image, which allows remote attackers to hijack mail sessions via an e-mail with an IMG tag that references a malicious URL that captures the referer.

Threat Intelligence

EPSS Exploit Probability
76.3% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Information Exposure

Affected Products 14

VendorProductVersionRange
stalkercommunigate_pro3.1any
stalkercommunigate_pro3.2.4any
stalkercommunigate_pro3.2_b5any
stalkercommunigate_pro3.2_b7any
stalkercommunigate_pro3.3.2any
stalkercommunigate_pro3.3_b1any
stalkercommunigate_pro3.3_b2any
stalkercommunigate_pro3.4_b3any
stalkercommunigate_pro4.0.1any
stalkercommunigate_pro4.0.2any
stalkercommunigate_pro4.0.3any
stalkercommunigate_pro4.0.6any
stalkercommunigate_pro4.0_b2any
stalkercommunigate_pro4.0_b3any

References 4

Remediation