1045 matches found
Round Cube Webmail 0.1 -20051021 - Full Path Disclosure
source: https://www.securityfocus.com/bid/15920/info Round Cube will reportedly reveal its installation path in an error message output to the client. The filesystem layout can be sensitive information that is useful in other attacks against the target server. The trigger for this behavior is not...
Round Cube Webmail 0.1 -20051021 - Full Path Disclosure
Round Cube Webmail 0.1 -20051021 - Full Path Disclosure source: https://www.securityfocus.com/bid/15920/info Round Cube will reportedly reveal its installation path in an error message output to the client. The filesystem layout can be sensitive information that is useful in other attacks against...
cobalt.webmail.txt
I just got a new Cobalt Cube today and I have been poking around at it for security issues... I noticed this minor issue in the webmail system. Your users are not aloud to have shell access by default however if they malform their mailbox requests they can read local files with the perms of the...
Cobalt Cube Webmail directory traversal
I just got a new Cobalt Cube today and I have been poking around at it for security issues... I noticed this minor issue in the webmail system. Your users are not aloud to have shell access by default however if they malform their mailbox requests they can read local files with the perms of the...
cognos.powerplay.txt
Date: Mon, 28 Jun 1999 07:29:37 -0400 From: Darin White To: [email protected] Subject: Cognos PowerPlay Web Edition security WEB SECURITY ADVISORY ------------- Release Date: 1999-06-25 Application: Cognos PowerPlay Web Edition Severity: Unauthenticated web users can sniff cube data Author:...