Описание
Horde Internet Messaging Program (IMP) before 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the server.
Horde Internet Messaging Program (IMP) before 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the server.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2001-1258
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000410
- http://online.securityfocus.com/archive/1/198495
- http://www.caldera.com/support/security/advisories/CSSA-2001-027.0.txt
- http://www.debian.org/security/2001/dsa-073
- http://www.iss.net/security_center/static/6906.php
- http://www.securityfocus.com/bid/3083
EPSS
Процентиль: 30%
0.00112
Низкий
CVE ID
Связанные уязвимости
nvd
около 24 лет назад
Horde Internet Messaging Program (IMP) before 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the server.
EPSS
Процентиль: 30%
0.00112
Низкий