Insecure ACLs in The Bat! Email Client by Rit Research Labs
CVE-2003-1133

Currently unrated

Key Information:

Vendor: Ritlabs
Status: The Bat
Vendor: CVE Published:; 31 December 2003

What is CVE-2003-1133?

The Bat! email client versions 1.0.11 through 2.0 have a security weakness due to the creation of new accounts with insecure Access Control Lists (ACLs). This flaw allows local users to gain unauthorized access to other users' email messages, potentially jeopardizing the confidentiality of sensitive information. Organizations using these versions of The Bat! should take immediate action to mitigate this risk and protect their data.

References

http://www.securityfocus.com/bid/8891

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/342485

mailing-listx_refsource_BUGTRAQ

http://securitytracker.com/id?1008004

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
May 4, 2005
Vulnerability published
Dec 31, 2003

CVE-2003-1133 Data

JSON

Ritlabs

What is CVE-2003-1133?

References

Timeline