BID:23968

MHSoftware Connect Daily Unspecified Vulnerability

Info

MHSoftware Connect Daily Unspecified Vulnerability

Bugtraq ID:	23968
Class:	Unknown
CVE:	CVE-2007-2712
Remote:	Yes
Local:	No
Published:	May 14 2007 12:00AM
Updated:	May 07 2015 05:39PM
Credit:	The vendor disclosed this issue.
Vulnerable:	mhsoftware.com Connect Daily 3.3.2 mhsoftware.com Connect Daily 3.3 mhsoftware.com Connect Daily 3.2.9 mhsoftware.com Connect Daily 3.2.8

Not Vulnerable:	mhsoftware.com Connect Daily 3.3.3

Discussion

MHSoftware Connect Daily Unspecified Vulnerability

NetWin Webmail is prone to an unspecified vulnerability.

No technical details are currently available. We will update this BID as more information emerges.

Versions of Connect Daily prior to 3.3.3 are vulnerable.

Exploit / POC

MHSoftware Connect Daily Unspecified Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

MHSoftware Connect Daily Unspecified Vulnerability

Solution:
Connect Daily 3.3.3 has been released to address this issue. Please see the references for more information.

mhsoftware.com Connect Daily 3.2.8

mhsoftware.com CalLoader.exe
http://www.mhsoftware.com/loader/CalLoader.exe

mhsoftware.com Connect Daily 3.2.9

mhsoftware.com CalLoader.exe
http://www.mhsoftware.com/loader/CalLoader.exe

mhsoftware.com Connect Daily 3.3

mhsoftware.com CalLoader.exe
http://www.mhsoftware.com/loader/CalLoader.exe

mhsoftware.com Connect Daily 3.3.2

mhsoftware.com CalLoader.exe
http://www.mhsoftware.com/loader/CalLoader.exe

References

MHSoftware Connect Daily Unspecified Vulnerability

References:

Connect Daily Revision History (MHSoftware)