CVE-2015-3293 Information

Description

FortiMail 5.0.3 through 5.2.3 allows remote administrators to obtain credentials via the \diag debug application httpd\ command.

Reference

http://www.fortiguard.com/advisory/FG-IR-15-009/ http://www.securitytracker.com/id/1032185