Unrated severityNVD Advisory· Published Oct 12, 2001· Updated Apr 16, 2026

CVE-2001-1281

Description

Web Messaging Server for Ipswitch IMail 7.04 and earlier allows remote authenticated users to change information for other users by modifying the olduser parameter in the "Change User Information" web form.

Affected products

Ipswitch, Inc./Imail3 versions
cpe:2.3:a:ipswitch:imail:6.0.2:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:ipswitch:imail:6.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ipswitch:imail:6.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:ipswitch:imail:7.0.4:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/bugtraq/2001-10/0076.htmlnvdVendor Advisory
www.ipswitch.com/Support/IMail/news.htmlnvd
www.securityfocus.com/bid/3429nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000