CVE-2002-1527
EMU Webmail 5.0 - Information Disclosure via Malformed Script String
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2002-1527. PoCs published by FVS.
AI-analyzed exploit summary This is a writeup describing an information leakage vulnerability in Emumail. By injecting unexpected characters into web mail forms, an attacker can trigger an error that reveals the web root directory path.
Description
emumail.cgi in EMU Webmail 5.0 allows remote attackers to determine the full pathname for emumail.cgi via a malformed string containing script, which generates a regular expression matching error that includes the pathname in the resulting error message.
Exploits (1)
This is a writeup describing an information leakage vulnerability in Emumail. By injecting unexpected characters into web mail forms, an attacker can trigger an error that reveals the web root directory path.