Unrated severityNVD Advisory· Published Nov 2, 2005· Updated Jun 16, 2026
CVE-2005-3429
CVE-2005-3429
Description
Rockliffe MailSite Express before 6.1.22, with the option to save login information enabled, saves user passwords in plaintext in cookies, which allows local users to obtain passwords by reading the cookie file, or remote attackers to obtain the cookies via cross-site scripting (XSS) vulnerabilities.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
6- archives.neohapsis.com/archives/fulldisclosure/2005-10/0578.htmlnvdExploitPatch
- www.security-assessment.com/Advisories/Rockliffe_Express_Webmail_Vulnerabilities.pdfnvdExploitPatchVendor Advisory
- marc.infonvd
- securitytracker.com/idnvd
- www.osvdb.org/22682nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/22906nvd
News mentions
0No linked articles in our index yet.