Nullmailer · Nullmailer · CVE-2013-4223
**Name of the Vulnerable Software and Affected Versions**
Nullmailer versions prior to 1.11-r2
**Description**
The issue allows local users to obtain SMTP authentication credentials by reading the /etc/nullmailer/remotes file due to world-readable permissions.
**Recommendations**
For versions prior to 1.11-r2, update to version 1.11-r2 or later to resolve the issue.