November 28, 2000

Security problems with TWIG webmail system

Author: JT Smith

"Twig is designed to allow the use of virtual hosting, unfortunatly the script
that checks this fails to check for user suplied input, thus allowing
anyone to submit malicious values as the configuration directory." From Help Net Security.

Category:

  • Linux
Click Here!