World-readable permissions for /etc/zarafa/license in Zarafa Collaboration Platform 4.1 allow unauthorized access to sensitive information

World-readable permissions for /etc/zarafa/license in Zarafa Collaboration Platform 4.1 allow unauthorized access to sensitive information

CVE-2014-5450 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Zarafa Collaboration Platform 4.1 uses world-readable permissions for /etc/zarafa/license, which allows local users to obtain sensitive information by reading license files.

Learn more about our User Device Pen Test.