CVE-2006-7062

CVE-2006-7062

EPSS 1.4%

calendar.php in Kamgaing Email System (kmail) 2.3 and earlier allows remote attackers to obtain the full path of the server via an invalid d parameter, which leaks the path in an error message.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://pridels0.blogspot.com/2006/04/kmail-23-vuln.html https://exchange.xforce.ibmcloud.com/vulnerabilities/26120 http://www.osvdb.org/25065