Old 3rd February 2009, 11:30
topdog topdog is offline
Senior Member
Join Date: Jan 2008
Location: South Africa
Posts: 1,352
Thanks: 0
Thanked 154 Times in 151 Posts
Default Mailwatch vulnerability

Just to give you a heads up, users of mailwatch for mailscanner, there is a nasty bug which allows an attacker to read files and directories on your web server.

Details can be found here


This is actually a worthless option in mailwatch so i would advise you to either remove the file.

Am not on their mailing list so i do not know what fix the author recommends.
http://www.topdog.za.net - Got Linux problems ? - I can help.
http://www.baruwa.org - Try it.
Reply With Quote
Sponsored Links


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Spamsnake - Mailwatch problem ravx HOWTO-Related Questions 4 2nd December 2008 15:27
Dns vulnerability Fortuyol General 3 11th July 2008 08:35
Releasing non RFC822 messages and attachments through MailWatch Goose Server Operation 8 1st June 2008 22:01
Virtual Users And Domains With Postfix, MailScanner, Mailwatch & MySQL On CentOS 5.1 dellock HOWTO-Related Questions 1 28th March 2008 15:45
ClamAV libclamav MEW PE File Integer Overflow Vulnerability till General 14 22nd December 2007 14:10

All times are GMT +2. The time now is 16:39.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.