Summary
MDaemon is prone to an information-disclosure vulnerability because it fails to sufficiently sanitize user-supplied input.
Exploiting this issue may allow an attacker to gain access to information from arbitrary files on the vulnerable server.
MDaemon 11.0.1 is vulnerable
other versions may also be affected.
References
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- poprelayd & sendmail authentication problem
- MailEnable 'MESMTRPC.exe' SMTP Service Multiple Remote Denial of Service Vulnerabilities
- Sendmail custom configuration file
- Microsoft Windows SMTP Server MX Record Denial of Service Vulnerability
- Code-Crafters Ability Mail Server IMAP FETCH Request Remote Denial Of Service Vulnerability