CVE-2005-1682

Name of the Vulnerable Software and Affected Versions JavaMail API (affected versions not specified)

Description The issue concerns the JavaMail API, which does not properly validate the message number in the MimeMessage constructor in javax.mail.internet.InternetHeaders. This allows remote authenticated users to read other users' e-mail messages by modifying the msgno parameter.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.