Zarafa WebAccess and WebApp '/tmp' Directory Multiple Local Information Disclosure Vulnerabilities

Bugtraq ID:	69369
Class:	Design Error
CVE:	CVE-2014-5449
Remote:	No
Local:	Yes
Published:	Aug 24 2014 12:00AM
Updated:	Apr 16 2015 06:13PM
Credit:	Robert Scheck
Vulnerable:
Not Vulnerable:

Zarafa WebAccess and WebApp '/tmp' Directory Multiple Local Information Disclosure Vulnerabilities

Zarafa WebAccess and WebApp is prone to multiple local information-disclosure vulnerabilities.



Local attackers can exploit these issues to obtain sensitive information. Information obtained may lead to further attacks.

Zarafa WebAccess and WebApp '/tmp' Directory Multiple Local Information Disclosure Vulnerabilities

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].

Zarafa WebAccess and WebApp '/tmp' Directory Multiple Local Information Disclosure Vulnerabilities

References:

• memcached Homepage (Memcached)