Kebi WebMail Unauthenticated Administration Vulnerability

Kebi Webmail is a korean web mail solution provided as a component of various Kebi Community solutions. This software is reported to leave administrator functions available in a world accessible directory. The functions can reportedly be accessed in a directory /a/ off the main web-mail directory, potentially disclosing information and allowing unauthorized modification of web mail functions.


Privacy Statement
Copyright 2010, SecurityFocus