3 matches found
Novell Groupwise Windows客户端API非授权邮件访问漏洞
BUGTRAQ ID: 18716 CVECAN ID: CVE-2006-3268 Novell GroupWise是一款跨平台协作软件。 Novell GroupWise的客户端API实现上存在漏洞,攻击者可能利用漏洞绕过安全限制,访问某些非授权的邮件。 Novell Groupwise 7.x Novell Groupwise 6.x Novell Groupwise 5.x 厂商补丁: Novell ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: GroupWise 6.5: Apply SP6 Client Update 1...
Red Hat shadow utils unauthorized mail access
User's mailbox created with adduser has rw permissions for primary group...
SCO Unixware 7.1 - '/var/mail' Permissions
source: https://www.securityfocus.com/bid/849/info Certain versions of SCO's UnixWare only 7.1 was tested ship with the /var/mail/ directory with permission 777-rwxrwxrwx . This in effect allows malicious users to read incoming mail for users who do not yet have a mail file /var/mail/username...