CVE-2002-1782 Information

Description

The default configuration of University of Washington IMAP daemon (wu-imapd) when running on a system that does not allow shell access allows a local user with a valid IMAP account to read arbitrary files as that user.

Reference

http://online.securityfocus.com/archive/1/275127 http://www.security.nnov.ru/advisories/courier.asp http://www.securityfocus.com/bid/4909 http://www.washington.edu/imap/IMAP-FAQs/index.html5.1 https://exchange.xforce.ibmcloud.com/vulnerabilities/9238