|Category:||Remote file access|
|Title:||Atrium Mercur Mailserver|
The remote imap server is Mercur Mailserver 3.20
There is a flaw in this server (present up to version 3.20.02)
which allow any authenticated user to read any file on the system.
This includes other users mailboxes, or any system file.
Warning : this flaw has not been actually checked but was deduced
from the server banner
Solution : There was no solution ready when this vulnerability was written
Please contact the vendor for updates that address this vulnerability.
See also : http://oliver.efri.hr/~
Risk factor : High
BugTraq ID: 1144|
Common Vulnerability Exposure (CVE) ID: CVE-2000-0318
XForce ISS Database: mercur-remote-dot-attack
|Copyright||This script is Copyright (C) 2000 Renaud Deraison|
|This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.