Brightmail Spamfilter 6.0 and earlier beta releases allows remote attackers to read mail from other users by modifying the id parameter in a viewMsgDetails.do request.Referenceshttp://marc.info/?l=bugtraq&m=108880205115802&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/16609http://marc.info/?l=bugtraq&m=108981452101353&w=2http://www.securityfocus.com/bid/10657
