Directory traversal vulnerability in IncrediMail version 1400185 and earlier allows local users to overwrite files on the local hard drive by appending .. (dot dot) sequences to filenames listed in the content.ini file.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/bugtraq/2001-05/0078.html | Exploit Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/6529 | |
http://archives.neohapsis.com/archives/bugtraq/2001-05/0078.html | Exploit Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/6529 |
Configurations
History
20 Nov 2024, 23:35
Type | Values Removed | Values Added |
---|---|---|
References | () http://archives.neohapsis.com/archives/bugtraq/2001-05/0078.html - Exploit, Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/6529 - |
Information
Published : 2001-09-20 04:00
Updated : 2024-11-20 23:35
NVD link : CVE-2001-0642
Mitre link : CVE-2001-0642
CVE.ORG link : CVE-2001-0642
JSON object : View
Products Affected
incredimail
- incredimail
CWE