Vulnerabilities

CVE-2006-3159

by Fred · 22/06/2006

pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message.

Date published : 2006-06-22

http://www.securityfocus.com/bid/18749

http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html

Similar

Tags: Cybersecurity Alert