Unrated severityNVD Advisory· Published May 20, 2005· Updated Jun 16, 2026
CVE-2005-1682
CVE-2005-1682
Description
JavaMail API, as used by Solstice Internet Mail Server POP3 2.0, does not properly validate the message number in the MimeMessage constructor in javax.mail.internet.InternetHeaders, which allows remote authenticated users to read other users' e-mail messages by modifying the msgno parameter. NOTE: Sun disputes this issue, stating "The report makes references to source code and files that do not exist in the mentioned products.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:solstice:solstice_internet_mail_server:pop3_2.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2- www.vupen.com/english/advisories/2005/0574nvdVendor Advisory
- marc.infonvd
News mentions
0No linked articles in our index yet.