PT-2005-1402 · Infinite+1 · Infinite Mobile Delivery Webmail+1
Steven
·
Published
2005-02-10
·
Updated
2024-02-14
·
CVE-2005-0324
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Infinite Mobile Delivery Webmail version 2.6
Description
The issue allows remote attackers to gain sensitive information via an HTTP request containing invalid characters for a Windows folder name, which reveals the path in an error message.
Recommendations
For Infinite Mobile Delivery Webmail version 2.6, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Infinite Mobile Delivery Webmail
Windows