Vendor
Imp
Products
2
CVEs
3
Across products
3
Status
Private
Products
2- 2 CVEs
- 1 CVE
Recent CVEs
3| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2001-0857 | 0.04 | — | 0.10 | Dec 6, 2001 | Cross-site scripting vulnerability in status.php3 in Imp Webmail 2.2.6 and earlier allows remote attackers to gain access to the e-mail of other users by hijacking session cookies via the message parameter. | ||
| CVE-2000-0459 | 0.00 | — | 0.00 | Apr 22, 2000 | IMP does not remove files properly if the MSWordView application quits, which allows local users to cause a denial of service by filling up the disk space by requesting a large number of documents and prematurely stopping the request. | ||
| CVE-2000-0458 | 0.00 | — | 0.00 | Apr 22, 2000 | The MSWordView application in IMP creates world-readable files in the /tmp directory, which allows other local users to read potentially sensitive information. |
- CVE-2001-0857Dec 6, 2001risk 0.04cvss —epss 0.10
Cross-site scripting vulnerability in status.php3 in Imp Webmail 2.2.6 and earlier allows remote attackers to gain access to the e-mail of other users by hijacking session cookies via the message parameter.
- CVE-2000-0459Apr 22, 2000risk 0.00cvss —epss 0.00
IMP does not remove files properly if the MSWordView application quits, which allows local users to cause a denial of service by filling up the disk space by requesting a large number of documents and prematurely stopping the request.
- CVE-2000-0458Apr 22, 2000risk 0.00cvss —epss 0.00
The MSWordView application in IMP creates world-readable files in the /tmp directory, which allows other local users to read potentially sensitive information.