Unrated severityNVD Advisory· Published Dec 31, 2003· Updated Apr 16, 2026
CVE-2003-1481
CVE-2003-1481
Description
CommuniGate Pro 3.1 through 4.0.6 sends the session ID in the referer field for an HTTP request for an image, which allows remote attackers to hijack mail sessions via an e-mail with an IMG tag that references a malicious URL that captures the referer.
Affected products
14cpe:2.3:a:stalker:communigate_pro:3.1:*:*:*:*:*:*:*+ 13 more
- cpe:2.3:a:stalker:communigate_pro:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:3.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:3.2_b5:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:3.2_b7:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:3.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:3.3_b1:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:3.3_b2:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:3.4_b3:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:4.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:4.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:4.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:4.0_b2:*:*:*:*:*:*:*
- cpe:2.3:a:stalker:communigate_pro:4.0_b3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4News mentions
0No linked articles in our index yet.