Ipswitch IMail is an email server that serves clients their mail via a web interface. IMail supports most common email protocols such as SMTP, POP3, IMAP4, and LDAP, etc. IMail also includes support for multiple domains, and web based administration. It runs on Microsoft Windows platforms. IMail is capable of reading HTML formatted email messages. A vulnerability exists which could possibly allow account hijacking via the web interface. When a user authenticates with IMail, they are issued a unique session ID contained in a URL. However, an attacker who can somehow gain access to the session ID will be able to hijack the session of a user who is logged in. For example, this may be exploited by sending a HTML e-mail to a legitimate IMail user which contains an image that is stored remotely on a malicious server. A HTTP_Referer containing the unique session ID will be sent to the remote server when the image is loaded. The attacker may then use this session ID to access the...
Ipswitch IMail is an email server that serves clients their mail via a web interface. IMail supports most common email protocols such as SMTP, POP3, IMAP4, and LDAP, etc. IMail also includes support for multiple domains, and web based administration. It runs on Microsoft Windows platforms. IMail is capable of reading HTML formatted email messages. A vulnerability exists which could possibly allow account hijacking via the web interface. When a user authenticates with IMail, they are issued a unique session ID contained in a URL. However, an attacker who can somehow gain access to the session ID will be able to hijack the session of a user who is logged in. For example, this may be exploited by sending a HTML e-mail to a legitimate IMail user which contains an image that is stored remotely on a malicious server. A HTTP_Referer containing the unique session ID will be sent to the remote server when the image is loaded. The attacker may then use this session ID to access the legitimate user's IMail account. It has been reported that this is still an issue in IMail 7.0.5. To be on the safe side, affected users should upgrade to the latest version.
