Slayer

**Name of the Vulnerable Software and Affected Versions** MailScan version 5.6.a espatch 1 **Description** A directory traversal issue exists in the Web Based Administration of MailScan, allowing remote attackers to read arbitrary files by including a .. (dot dot) in the URI. **Recommendations** For MailScan version 5.6.a espatch 1, consider restricting access to the Web Based Administration interface until a fix is available. As a temporary workaround, avoid using the .. (dot dot) sequence in URIs to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.