2 matches found
CVE-1999-0380
CVE-1999-0380 affects SLMail 3.1 and 3.2. When Remote Administration Service (RAS) is enabled, an attacker can point a user’s Finger File to a target file and, after running finger, access NTFS files locally. The underlying cause is the Finger service handling a user file reference insecurely, en...
CVE-1999-0380
SLMail 3.1 and 3.2 allows local users to access any file in the NTFS file system when the Remote Administration Service RAS is enabled by setting a user's Finger File to point to the target file, then running finger on the user...