Unrated severityNVD Advisory· Published May 28, 2010· Updated Jun 16, 2026
CVE-2010-2116
CVE-2010-2116
Description
The web interface in McAfee Email Gateway (formerly IronMail) 6.7.1 allows remote authenticated users, with only Read privileges, to gain Write privileges to modify configuration via the save action in a direct request to admin/systemWebAdminConfig.do.
Affected products
3cpe:2.3:a:mcafee:email_gateway:6.7.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mcafee:email_gateway:6.7.1:*:*:*:*:*:*:*
- (no CPE)range: =6.7.1
- cpe:2.3:a:mcafee:secure_mail:6.7.1:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
5- www.cybsec.com/vuln/cybsec_advisory_2010_0501_Ironmail_Advisory_Web_Access_Broken.pdfnvdExploit
- secunia.com/advisories/39881nvdVendor Advisory
- www.securitytracker.com/idnvdThird Party AdvisoryVDB Entry
- www.vupen.com/english/advisories/2010/1239nvdVendor Advisory
- osvdb.org/64832nvdBroken Link
News mentions
0No linked articles in our index yet.