CVE-2001-1188

Name of the Vulnerable Software and Affected Versions mailto.exe version 1.0.9 and earlier

Description The issue allows remote attackers to send spam email through remote servers by modifying certain hidden form fields, including sendto, email, server, subject, and resulturl.

Recommendations For mailto.exe version 1.0.9 and earlier, consider disabling the mailto.exe functionality until a patch is available to prevent spam email sending. Restrict access to the hidden form fields to minimize the risk of exploitation.