RSS   Vulnerabilities for 'Emumail'   RSS

2002-08-12
 
CVE-2002-0532

 

 
EMU Webmail allows local users to execute arbitrary programs via a .. (dot dot) in the HTTP Host header that points to a Trojan horse configuration file that contains a pageroot specifier that contains shell metacharacters.

 
 
CVE-2002-0531

 

 
Directory traversal vulnerability in emumail.cgi in EMU Webmail 4.5.x and 5.1.0 allows remote attackers to read arbitrary files or list arbitrary directories via a .. (dot dot) in the type parameter.

 

 >>> Vendor: Emumail 4 Products
Emumail
Emumail red hat linux
Emumail unix
Emu webmail


Copyright 2024, cxsecurity.com

 

Back to Top