CVE-2002-1710

Name of the Vulnerable Software and Affected Versions BasiliX Webmail version 1.1.0

Description The issue concerns the attachment capability in Compose Mail, which fails to verify the origin of attachments. This could potentially allow local users to access sensitive information, such as password files, that they should not have access to.

Recommendations For BasiliX Webmail version 1.1.0, consider restricting access to the attachment feature in Compose Mail until a proper fix is implemented to verify the origin of attachments. As a temporary workaround, users should be cautious when using the attachment feature to prevent potential information theft. At the moment, there is no information about a newer version that contains a fix for this vulnerability.