Ttg

**Name of the Vulnerable Software and Affected Versions** Alt-N WebAdmin versions 3.2.5 and possibly earlier versions MDaemon versions 9.0.6 and possibly earlier versions **Description** The issue allows remote authenticated domain administrators to gain privileges and obtain access to the system mail queue. This is achieved by modifying the mailbox of the MDaemon user account to use the mailbox of another account through the useredit account.wdm module in Alt-N WebAdmin. **Recommendations** For Alt-N WebAdmin version 3.2.5, restrict access to the useredit account.wdm module to prevent unauthorized modifications to the MDaemon user account mailbox. For MDaemon version 9.0.6, limit privileges for domain administrators to prevent them from accessing the system mail queue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Alt-N WebAdmin versions 3.2.3 through 3.2.4 **Description** The issue allows remote authenticated domain administrators to change a global administrator's password and gain privileges. This is achieved via the userlist.wdm file. **Recommendations** For Alt-N WebAdmin versions 3.2.3 and 3.2.4, restrict access to the userlist.wdm file to prevent unauthorized changes to global administrator passwords. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Alt-N WebAdmin versions 3.2.3 through 3.2.4 MDaemon version 9.0.5 **Description** The issue allows remote authenticated global administrators to read arbitrary files. This is achieved by exploiting directory traversal vulnerabilities using a .. (dot dot) in the `file` parameter to the following API endpoints: "logfile view.wdm" and "configfile view.wdm". **Recommendations** For Alt-N WebAdmin versions 3.2.3 through 3.2.4, restrict access to the "logfile view.wdm" and "configfile view.wdm" API endpoints to minimize the risk of exploitation. For MDaemon version 9.0.5, consider disabling the `file` parameter in the affected API endpoints until a patch is available.