Trend Micro Scanmail for Domino Information Disclosure

2004-11-07T10:31:09
ID OSVDB:11510
Type osvdb
Reporter DokFLeed(dokfleed@dokfleed.net)
Modified 2004-11-07T10:31:09

Description

Vulnerability Description

ScanMail for Domino contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a malicious attacker requests unprotected configuration files installed by default, which will disclose sensitive information resulting in a loss of confidentiality.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

ScanMail for Domino contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a malicious attacker requests unprotected configuration files installed by default, which will disclose sensitive information resulting in a loss of confidentiality.

References:

Security Tracker: 1012082 Nessus Plugin ID:14312 ISS X-Force ID: 17962 CVE-2004-1003 Bugtraq ID: 11612