CVE-2015-3436 | Zarafa Collaboration Platform up to 7.1.12/7.2.0 ECServer.cpp link following (Nessus ID 84027 / ID 123616)
A vulnerability, which was classified as problematic, was found in Zarafa Collaboration Platform up to 7.1.12/7.2.0. Affected is an unknown function of the file provider/server/ECServer.cpp. The manipulation leads to link following.
This vulnerability is traded as CVE-2015-3436. The attack needs to be approached locally. There is no exploit available.
It is recommended to upgrade the affected component.