Family: Remote file access --> Category: infos
Atrium Mercur Mailserver Vulnerability Scan
Vulnerability Scan Summary
mercure imap version check
Detailed Explanation for this Vulnerability Test
The remote imap server is Mercur Mailserver 3.20
There is a flaw in this server (present up to version 3.20.02)
which allow any authenticated user to read any file on the system.
This includes other users mailboxes, or any system file.
Warning : this flaw has not been actually checked but was deduced
from the server banner
Solution : There was no solution ready when this vulnerability was written
Please contact the vendor for updates that address this vulnerability.
Threat Level: High
See also : http://oliver.efri.hr/~crv/security/bugs/Others/mercur3.html
Click HERE for more information and discussions on this network vulnerability scan.