CVE-2004-1670

by Fred · 20/02/2005

Multiple directory traversal vulnerabilities Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7, and possibly other versions, allow remote attackers to (1) create arbitrary directories via a .. (dot dot) in the user parameter to viewaction.html or (2) rename arbitrary files via a ….// (doubled dot dot) in the folderold or folder parameters to folders.html.

Date published : 2005-02-20

http://www.securityfocus.com/bid/11371

http://marc.info/?l=bugtraq&m=109483971420067&w=2

CVE-2004-1670

Similar

Recent Posts

Categories

CVE-2004-1670

Share this:

Similar

Recent Posts

Categories

Tags