ipop2d fold Command Arbitrary File Access

Medium Nessus Plugin ID 10469


The remote POP2 server is affected by an information disclosure vulnerability.


The remote pop2 server allows the reading of arbitrary files for authenticated users, using the 'fold' command.


There is no known solution at this time.

Plugin Details

Severity: Medium

ID: 10469

File Name: ipop2d_readfiles.nasl

Version: $Revision: 1.24 $

Type: remote

Family: Misc.

Published: 2000/08/02

Modified: 2015/01/14

Dependencies: 17975

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:U/RL:U/RC:ND

Vulnerability Information

Vulnerability Publication Date: 2000/07/14

Reference Information

BID: 1484

OSVDB: 368