CVE-2011-1104

Multiple cross-site request forgery (CSRF) vulnerabilities in Mutare EVM allow remote attackers to hijack the authentication of arbitrary users for requests that (1) change a PIN, (2) delete messages, (3) add a delivery address, or (4) change a delivery address.

Date published : 2011-02-28

http://www.securityfocus.com/bid/46537

http://www.kb.cert.org/vuls/id/136612