NuytsTech Security

CVE-2002-1132

by ·

SquirrelMail 1.2.7 and earlier allows remote attackers to determine the absolute pathname of the options.php script via a malformed optpage file argument, which generates an error message when the file cannot be included in the script.

Date published : 2004-09-01

http://www.securityfocus.com/bid/5949

http://archives.neohapsis.com/archives/bugtraq/2002-09/0246.html

Tags: