Reporting Vulnerable Public Web mail

To: vuldb@xxxxxxxxxxxxxxxxx
Subject: Reporting Vulnerable Public Web mail
From: ivan.sanchez@xxxxxxxxxxxxxxx
Date: Fri, 05 Oct 2007 14:58:04 -0300
Cc: bugtraq@xxxxxxxxxxxxxxxxx
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
User-agent: Internet Messaging Program (IMP) 3.2.8

Reporting Vulnerable Public Software

Technical Details:


+===========================================================================+
+      MailBee WebMail Pro <=3.4 (XSS) Multiple Remote Vulnerabilities      +
+===========================================================================+


Author(s): Ivan Sanchez  & Maximiliano Soler

Product: MailBee WebMail Pro 3.4

Web: http://www.afterlogic.com/

Versions: 3.4 (or less)

Date: 05/10/2007


---------------------------------



Not Vulnerable: 4.0 (or superior)



GOOGLE DORKS:
------------
[+] intitle:"MailBee WebMail"
[+] intext:"Powered by MailBee WebMail"


EXPLOIT:
--------

For example...after the variable "mode2" or "mode"

http://www.[DOMAIN].tld/[PATH]/login.php?mode=[XSS]

http://www.[DOMAIN].tld/[PATH]/default.asp?mode=advanced_login&mode2=[XSS]




NULL CODE SERVICES [ www.nullcode.com.ar ] Hunting Security Bugs!
+===========================================================================+
+      MailBee WebMail Pro <=3.4 (XSS) Multiple Remote Vulnerabilities      +
+===========================================================================+





    Ivan Javier Sanchez
  Vulnerabitity Assessment

     Tel-Fax 011-4276-2399
      Cel-154879059
   www.nullcode.com.ar

----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.

+===========================================================================+
+      MailBee WebMail Pro <=3.4 (XSS) Multiple Remote Vulnerabilities      +
+===========================================================================+


Author(s): Ivan Sanchez  & Maximiliano Soler

Product: MailBee WebMail Pro 3.4

Web: http://www.afterlogic.com/

Versions: 3.4 (or less)

Date: 05/10/2007


---------------------------------



Not Vulnerable: 4.0 (or superior)



GOOGLE DORKS:
------------
[+] intitle:"MailBee WebMail"
[+] intext:"Powered by MailBee WebMail"


EXPLOIT:
--------

For example...after the variable "mode2" or "mode"

http://www.[DOMAIN].tld/[PATH]/login.php?mode=[XSS]

http://www.[DOMAIN].tld/[PATH]/default.asp?mode=advanced_login&mode2=[XSS]




NULL CODE SERVICES [ www.nullcode.com.ar ] Hunting Security Bugs!
+===========================================================================+
+      MailBee WebMail Pro <=3.4 (XSS) Multiple Remote Vulnerabilities      +
+===========================================================================+

Prev by Date: Re: Re: file upload vulnerability in joomla media component
Next by Date: Format string in The Dawn of Time 1.69s beta4
Previous by thread: Multiple vulnerabilities in Dropteam 1.3.3
Next by thread: Format string in The Dawn of Time 1.69s beta4
Index(es):
- Date
- Thread