OSVDB ID: 14733 Title: Renegade BBS Email Arbitrary File Access |
Info |
|
|
Dates |
||||
|
|
Description |
Renegade BBS contains a flaw that may allow any user to access arbitrary files on the system. The issue is due to improper filtering in the e-mail facility. If a user sends herself email with a specially crafted body, the system will include the contents in the email. |
Classification |
Location:
Dial-up Access Required
Attack Type: Input Manipulation Impact: Loss of Confidentiality Exploit: Exploit Public |
Solution |
Upgrade to version 5.11f or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds. |
Products |
|
References |
|
Credit |
Unknown or Incomplete |