PT-2005-2145 · Egroupware · Egroupware

Published

2005-04-16

Updated

2017-07-11

CVE-2005-1129

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions eGroupWare versions 1.0.6 and earlier

Description The issue allows an attachment to be sent in the next email if an email with an attachment is composed but not sent. This may lead to sensitive information being sent to the wrong recipient.

Recommendations For versions 1.0.6 and earlier, as a temporary workaround, consider disabling the email composition feature with attachments until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1129

Affected Products

Egroupware

PT-2005-2145 · Egroupware · Egroupware

CVE-2005-1129

Related Identifiers

Affected Products

References · 7