PT-2002-1348 · Add2It · Add2It Mailman Free

Published

2002-05-03

Updated

2016-10-18

CVE-2002-0278

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Add2it Mailman Free versions 1.73 and earlier

Description The issue allows remote attackers to modify arbitrary files by utilizing a .. (dot dot) in the list parameter, which enables directory traversal.

Recommendations For versions 1.73 and earlier, update to a version later than 1.73 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0278

Affected Products

Add2It Mailman Free

PT-2002-1348 · Add2It · Add2It Mailman Free

CVE-2002-0278

Related Identifiers

Affected Products

References · 4