Infinite Mobile Delivery Webmail 2.6 allows remote attackers to gain sensitive information via an HTTP request that contains invalid characters for a Windows foldername, which reveals the path in an error message.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Infinite_mobile_delivery_webmail | Captaris | 2.6 (including) | 2.6 (including) |