CVE-2014-5449

Publication date

2014-10-20 15:00:00

Family

mitre

State

PUBLISHED

Description

Zarafa WebAccess 4.1 and WebApp uses world-readable permissions for the files in their tmp directory, which allows local users to obtain sensitive information by reading temporary session data.