[Tickets #5892] Re: Linked attachment feature vulnerability
bugs at horde.org
bugs at horde.org
Tue Jun 22 11:00:05 UTC 2010
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/5892
------------------------------------------------------------------------------
Ticket | 5892
Updated By | info at iwmi.com
Summary | Linked attachment feature vulnerability
Queue | IMP
Version | HEAD
Type | Bug
State | Resolved
Priority | 2. Medium
Milestone |
Patch |
Owners |
------------------------------------------------------------------------------
info at iwmi.com (2010-06-22 07:00) wrote:
Wow, just found out about this exploit. Limited employees at our
company have mail, however, they can store files in their accounts and
give out URL's to all employees allowing access to pictures, documents
and other. All of this sharing was going on "under the radar" - have
not tried yet to see if this is where they are storing MP3's - So
much for being able to control access !
More information about the bugs
mailing list