Vulnerabilities > CVE-2004-0336 - Path Disclosure vulnerability in Software602 602Pro LAN Suite Web Mail Installation

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

software602

NVD

Published: 2004-11-23

Updated: 2017-10-10

Summary

LAN SUITE Web Mail 602Pro allows remote attackers to gain sensitive information via the mail login form, which contains the path to the mail directory.

Vulnerable Configurations

Part	Description	Count
Application	Software602 Software602 602Pro LAN Suite 2002 Software602 602Pro LAN Suite 2003	2

References

http://archives.neohapsis.com/archives/bugtraq/2004-03/0096.html
http://marc.info/?l=bugtraq&m=107799540630302&w=2
http://www.securityfocus.com/bid/9781
https://exchange.xforce.ibmcloud.com/vulnerabilities/15350