Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2006-4620

The useredit_account.wdm module in Alt-N WebAdmin 3.2.5 running with MDaemon 9.0.6, and possibly earlier versions, allows remote authenticated domain administrators to gain privileges and obtain access to the system mail queue by modifying the mailbox of the MDaemon user account to use the mailbox of another account.

Published

2006-09-07T00:04:00.000

Last Modified

2025-04-03T01:03:51.193

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 4.6 (MEDIUM)

CVSSv2 Vector

AV:N/AC:H/Au:S/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: HIGH
Authentication: SINGLE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

3.9

Impact Score

6.4

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	alt-n	webadmin	≤ 3.2.5	Yes
Application	alt-n	webadmin	3.0.2	Yes
Application	alt-n	webadmin	3.0.3	Yes
Application	alt-n	webadmin	3.2.3	Yes
Application	alt-n	webadmin	3.2.4	Yes

References

http://files.altn.com/WebAdmin/Release/RelNotes_en.txt Patch ([email protected])
http://secunia.com/advisories/21727 Patch, Vendor Advisory ([email protected])
http://securityreason.com/securityalert/1516 ([email protected])
http://www.osvdb.org/28548 ([email protected])
http://www.securityfocus.com/archive/1/445153/100/0/threaded ([email protected])
http://www.teklow.com/advisories/TTG0602.txt Patch, Vendor Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/28776 ([email protected])
http://files.altn.com/WebAdmin/Release/RelNotes_en.txt Patch (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/21727 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://securityreason.com/securityalert/1516 (af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/28548 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/445153/100/0/threaded (af854a3a-2127-422b-91ae-364da2661108)
http://www.teklow.com/advisories/TTG0602.txt Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/28776 (af854a3a-2127-422b-91ae-364da2661108)