| VID |
18002 |
| Severity |
40 |
| Port |
143 |
| Protocol |
TCP |
| Class |
IMAP |
| Detailed Description |
The remote imap server is Mercur Mailserver 3.20.
There is a flaw in this server (present up to version 3.20.02) which allow any authenticated user to read any file on the system. This includes other users mailboxes, or any system file.
Warning : this flaw has not been actually checked but was deduced from the server banner. |
| Recommendation |
Obtain and install the most recent version, or patch for your IMAP server. |
| Related URL |
CVE-2000-0318 (CVE) |
| Related URL |
1144 (SecurityFocus) |
| Related URL |
4368 (ISS) |
|
