Emumail: >> Emumail Security Vulnerabilities
Directory traversal vulnerability in emumail.cgi in EMU Webmail 4.5.x and 5.1.0 allows remote attackers to read arbitrary files or list arbitrary directories via a .. (dot dot) in the type parameter.
CVSS Score
5.0
EPSS Score
0.023
Published
2002-08-12
EMU Webmail allows local users to execute arbitrary programs via a .. (dot dot) in the HTTP Host header that points to a Trojan horse configuration file that contains a pageroot specifier that contains shell metacharacters.
CVSS Score
7.2
EPSS Score
0.0
Published
2002-08-12