CVE-2013-2302

TransWARE Active! mail 6 - Unauthorized Sensitive Information Exposure via Local Shell Access

Title source: llm
STIX 2.1

Description

TransWARE Active! mail 6, when an external public interface is used, allows local users to obtain sensitive information belonging to arbitrary users by leveraging shell access, as demonstrated by a TELNET or SSH session to the server.

References (3)

Core 3
Core References
Third Party Advisory x_refsource_confirm
http://jvn.jp/en/jp/JVN04288738/458182/index.html
Third Party Advisory third-party-advisory x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000031
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN04288738/index.html

Scores

EPSS 0.0030
EPSS Percentile 22.2%

Details

CWE
CWE-200
Status published
Products (1)
transware/active\!_mail 6.0
Published Apr 04, 2013
Tracked Since Feb 18, 2026