Readmsg.php Detection Network Vulnerability

Summary

/base/webmail/readmsg.php was detected. Some versions of this CGI allow remote users to read local files with the permission of the web server. Note that if the user has a shell access, this kind of attack is not interesting. *** OVS just checked the presence of this file *** but did not try to exploit the flaw.

Solution

get a newer software from Cobalt Reference : http://online.securityfocus.com/archive/1/195165

Severity

Classification

CVE CVE-2001-1408

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Adobe ColdFusion Multiple Path Disclosure Vulnerabilities
AdaptCMS 'init.php' Remote File Include Vulnerability
Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
Apache Tiles Multiple XSS Vulnerability
Aardvark Topsites PHP 'index.php' Multiple Cross Site Scripting Vulnerabilities

readmsg.php detection

Take action and discover your vulnerabilities