First published: Thu Feb 10 2005(Updated: )
MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 allows remote authenticated users to gain sensitive information via an HTTP request to (1) calendar_d.html, (2) calendar_m.html, (3) calendar_w.html, or (4) calendar_y.html, which reveal the installation path.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Merak Mail Server | =7.6.0 | |
IceWarp Web Mail | =5.3.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.