Mailtraq 2.2 Webmail Utility Path Disclosure Vulnerability

2014-07-01T00:00:00
ID SSV:76529
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00

Description

No description provided by source.

                                        
                                            
                                                source: http://www.securityfocus.com/bid/7815/info

A vulnerability has been reported for Mailtraq that may result in the disclosure of path information.

The vulnerability exists due to insufficient sanitization of HTTP requests. Specifically, a request for non-existent resources will result in an error message being returned that includes path information. 

http://10.10.10.1/browse.asp*