Unrated severityNVD Advisory· Published Aug 12, 2012· Updated Apr 29, 2026

CVE-2012-2584

Description

Multiple cross-site scripting (XSS) vulnerabilities in Alt-N MDaemon Free 12.5.4 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) the Cascading Style Sheets (CSS) expression property in conjunction with a CSS comment within the STYLE attribute of an IMG element, (2) the CSS expression property in conjunction with multiple CSS comments within the STYLE attribute of an arbitrary element, or (3) an innerHTML attribute within an XML document.

Affected products

Alt N/Mdaemon
cpe:2.3:a:altn:mdaemon:12.5.4:-:free:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/20357/nvdExploit
www.securityfocus.com/bid/54885nvdExploit
www.securitytracker.com/idnvd
exchange.xforce.ibmcloud.com/vulnerabilities/77543nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000