Lucene search
HistoryJul 31, 2008 - 4:41 p.m.
CVE-2008-3395
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
5.7
Confidence
Low
EPSS
0.001
Percentile
34.1%
Calacode @Mail 5.41 on Linux uses weak world-readable permissions for (1) webmail/libs/Atmail/Config.php and (2) webmail/webadmin/.htpasswd, which allows local users to obtain sensitive information by reading these files. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected configurations
Node
linuxlinux_kernel
calacodeatmailMatch5.41
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| calacode | atmail | 5.41 | cpe:2.3:a:calacode:atmail:5.41:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2008-3395
2008-07-31 16:41:00
CVE-2008-3579
2008-08-10 21:41:00
cvelist
cvelist
CVE-2008-3395
2008-07-31 16:00:00
CVE-2008-3579
2008-08-10 21:00:00
prion
prion
Information disclosure
2008-07-31 16:41:00
Design/Logic Flaw
2008-08-10 21:41:00
nessus
nessus
nvd
nvd
CVE-2008-3579
2008-08-10 21:41:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
5.7
Confidence
Low
EPSS
0.001
Percentile
34.1%
Related for NVD:CVE-2008-3395