CVE-2006-0893

2006-02-25T11:02:00
ID CVE-2006-0893
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T21:00:00

Description

NOCC Webmail 1.0 allows remote attackers to obtain sensitive information via a direct request to (1) the profiles directory, which leaks e-mail addresses contained in filenames of profiles, and (2) the tmp directory, which lists names of uploaded attachments.