Alpine Linux: CVE-2017-5930: postfixadmin allows to delete protected aliases
|4||(AV:N/AC:M/Au:S/C:N/I:P/A:N)||March 20, 2017||August 30, 2017||October 30, 2017|
The AliasHandler component in PostfixAdmin before 3.0.2 allows remote authenticated domain admins to delete protected aliases via the delete parameter to delete.php, involving a missing permission check.
Free Nexpose Download
Discover, prioritize, and remediate security risks today!