Press CTRL-D to bookmark us
Welcome Guest Login / Register / Members
Search in  
Top Submit newsSubscribe
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
 

 Sponsored links

Want to become one of our authors and see your work published on ALLSeek.iNFO ?
 
 Open WebMail Discloses User and Group Account ID Information to Remote Users
Categorie: Vulnerability
Posted: 2002-11-27 by ReCall
Views: 383
Source: Click here
 		Current Rating: Not rated
Poor Best
 Details
Description: An information disclosure vulnerability was reported in Open WebMail. A remote user can determine the user id and group id of the WebMail scripts.



It is reported that a remote user can connect to the server and enter an invalid username to cause the server to disclose some internal system information. According to the report, the server will disclose the user id (uid) and group id (gid) of the Open WebMail process, such as is shown below:



euid=0, egid=80 80 80, mailgid=6



Impact: A remote user can determine the user id and group id of the Open WebMail process on the server.



Solution: No solution was available at the time of this entry.
 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=370

User comments (post your comments here)

Only registerd members can post comments and articles
 
Previous articleBack to news listNext article
 


InterJOB.su
Bookmark us | Set As Homepage | Advertising | Contact Us | Recomend us | Link us | Links | Terms

SpyLOG Page Rank Checker
LAST QUERIES