GFI Mail Essentials Email Header BCC Address Disclosure

2001-12-12T00:00:00
ID OSVDB:4746
Type osvdb
Reporter Ronan Waide(ronan.waide@euroconex.com)
Modified 2001-12-12T00:00:00

Description

Vulnerability Description

Mail Essentials contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a person uses the software to send mail using the BCC feature, which will disclose a Blind Carbon Copy (BCC) intended recepient resulting in a loss of confidentiality.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Mail Essentials contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a person uses the software to send mail using the BCC feature, which will disclose a Blind Carbon Copy (BCC) intended recepient resulting in a loss of confidentiality.

References:

Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-12/0110.html