Unrated severityNVD Advisory· Published Oct 20, 2000· Updated Jun 16, 2026
CVE-2000-0716
CVE-2000-0716
Description
WorldClient email client in MDaemon 2.8 includes the session ID in the referer field of an HTTP request when the user clicks on a URL, which allows the visited web site to hijack the session ID and read the user's email.
Affected products
2- Range: =2.8
Patches
Vulnerability mechanics
References
3- www.ntbugtraq.com/default.aspnvdPatchVendor Advisory
- www.securityfocus.com/bid/1553nvdPatchVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/5070nvd
News mentions
0No linked articles in our index yet.