CVE-2006-0818

Name of the Vulnerable Software and Affected Versions MERAK Mail Server for Windows version 8.3.8r VisNetic MailServer versions prior to 8.5.0.5

Description The issue allows remote authenticated users to include arbitrary files via a modified language parameter and a full Windows or UNC pathname in the lang settings parameter to "mail/index.html". This is due to improper sanitization by the validatefolder PHP function.

Recommendations For MERAK Mail Server for Windows version 8.3.8r, update to IceWarp Web Mail 5.6.1 or later. For VisNetic MailServer versions prior to 8.5.0.5, update to version 8.5.0.5 or later. As a temporary workaround, consider restricting access to the lang settings parameter in the "mail/index.html" endpoint to minimize the risk of exploitation.