Vulnerabilities > CVE-2004-1102 - Remote File Enumeration vulnerability in Tips Mailpost 5.1.1Sv

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

tips

exploit available

NVD

Published: 2005-01-10

Updated: 2017-07-11

Summary

MailPost 5.1.1sv, and possibly earlier versions, displays a different error message depending on whether the requested file exists or not, which allows remote attackers to gain sensitive information.

Vulnerable Configurations

Part	Description	Count
Application	Tips Tips Mailpost 5.1.1_Sv	1

Exploit-Db

description	TIPS MailPost 5.1.1 Remote File Enumeration Vulnerability. CVE-2004-1102. Webapps exploit for cgi platform
id	EDB-ID:24723
last seen	2016-02-02
modified	2004-11-03
published	2004-11-03
reporter	Gemma Hughes
source	https://www.exploit-db.com/download/24723/
title	TIPS MailPost 5.1.1 - Remote File Enumeration Vulnerability

References

http://www.kb.cert.org/vuls/id/306086
http://www.procheckup.com/security_info/vuln_pr0408.html
http://www.securityfocus.com/bid/11599
https://exchange.xforce.ibmcloud.com/vulnerabilities/17954