Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1710


Vulnerability Score 3.6 3.6
CVE Id CVE-2002-1710
Last Modified 10 Sep 2008 03:15:21
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



The attachment capability in Compose Mail in BasiliX Webmail 1.1.0 does not check whether the attachment was uploaded by the user or came from a HTTP POST, which could allow local users to steal sensitive information like a password file.

Vulnerable Systems


  • Basilix Webmail 1.1.0


XF - basilix-webmail-attach-files(9386)

BID - 5062

VULNWATCH - 20020619 [VulnWatch] BasiliX multiple vulnerabilities

BUGTRAQ - 20020618 BasiliX multiple vulnerabilities

Last Updated: 27 May 2016 10:37:27