Design/Logic Flaw

2013-04-0419:55:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

TransWARE Active! mail 6, when an external public interface is used, allows local users to obtain sensitive information belonging to arbitrary users by leveraging shell access, as demonstrated by a TELNET or SSH session to the server.

CPENameOperatorVersion
active\\!_maileq6.0

CPE	Name	Operator	Version
	active\\!_mail	eq	6.0

References

jvn.jp/en/jp/JVN04288738/458182/index.html

jvn.jp/en/jp/JVN04288738/index.html

jvndb.jvn.jp/jvndb/JVNDB-2013-000031