CVE-2013-2302
TransWARE Active! mail 6 - Unauthorized Sensitive Information Exposure via Local Shell Access
Title source: llmDescription
TransWARE Active! mail 6, when an external public interface is used, allows local users to obtain sensitive information belonging to arbitrary users by leveraging shell access, as demonstrated by a TELNET or SSH session to the server.
References (3)
Core 3
Core References
Third Party Advisory x_refsource_confirm
http://jvn.jp/en/jp/JVN04288738/458182/index.html
Third Party Advisory third-party-advisory
x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000031
Third Party Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN04288738/index.html
Scores
EPSS
0.0030
EPSS Percentile
22.2%
Details
CWE
CWE-200
Status
published
Products (1)
transware/active\!_mail
6.0
Published
Apr 04, 2013
Tracked Since
Feb 18, 2026