NuralStorm Webmail Multiple Security Vulnerabilities Network Vulnerability

Summary

NuralStorm Webmail is prone to multiple security vulnerabilities. An attacker can exploit these vulnerabilities to obtain potentially sensitive information, create or delete arbitrary files, send unsolicited bulk email to users, execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, perform unauthorized actions, disclose or modify sensitive information, or upload arbitrary code and run it in the context of the webserver process. Other attacks are also possible. Webmail 0.985b is vulnerable other versions may also be affected.

References

http://www.madirish.net/?article=466
https://www.securityfocus.com/bid/41559

Updated on 2017-03-28

Severity

Classification

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Atutor AChecker Multiple SQL Injection and XSS Vulnerabilities
artmedic_links5 File Inclusion Vulnerability
Apache Struts2 Showcase Arbitrary Java Method Execution vulnerability
Avenger's News System Command Execution
Apache Struts ClassLoader Manipulation Vulnerabilities

Take action and discover your vulnerabilities