4 matches found
Round Cube Webmail 0.1 -20051021 Path Disclosure Weakness
No description provided by source. source: http://www.securityfocus.com/bid/15920/info Round Cube will reportedly reveal its installation path in an error message output to the client. The filesystem layout can be sensitive information that is useful in other attacks against the target server. Th...
Fedora 17 : roundcubemail-0.8.5-1.fc17 (2013-2177)
A cross-site scripting XSS flaws were round in the way Round Cube Webmail, a browser-based multilingual IMAP client, performed sanitization of 'data' and 'vbscript' URLs. A remote attacker could provide a specially crafted URL that, when opened would lead to arbitrary JavaScript, VisualBasic scri...
Round Cube Webmail 0.1 -20051021 - Full Path Disclosure
source: https://www.securityfocus.com/bid/15920/info Round Cube will reportedly reveal its installation path in an error message output to the client. The filesystem layout can be sensitive information that is useful in other attacks against the target server. The trigger for this behavior is not...
Round Cube Webmail 0.1 -20051021 - Full Path Disclosure
Round Cube Webmail 0.1 -20051021 - Full Path Disclosure source: https://www.securityfocus.com/bid/15920/info Round Cube will reportedly reveal its installation path in an error message output to the client. The filesystem layout can be sensitive information that is useful in other attacks against...