Vulnerability Description
LAN SUITE Web Mail 602Pro allows remote attackers to gain sensitive information via the mail login form, which contains the path to the mail directory.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Software602 | 602Pro Lan Suite | 2002 |
References
- http://archives.neohapsis.com/archives/bugtraq/2004-03/0096.html
- http://marc.info/?l=bugtraq&m=107799540630302&w=2
- http://www.securityfocus.com/bid/9781ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15350
- http://archives.neohapsis.com/archives/bugtraq/2004-03/0096.html
- http://marc.info/?l=bugtraq&m=107799540630302&w=2
- http://www.securityfocus.com/bid/9781ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15350
FAQ
What is CVE-2004-0336?
CVE-2004-0336 is a vulnerability with a CVSS score of 5.0 (MEDIUM). LAN SUITE Web Mail 602Pro allows remote attackers to gain sensitive information via the mail login form, which contains the path to the mail directory.
How severe is CVE-2004-0336?
CVE-2004-0336 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0336?
Check the references section above for vendor advisories and patch information. Affected products include: Software602 602Pro Lan Suite.