PT-2015-4934 · All-Mail · Al-Mail32
Yosuka Hasegawa
·
Published
2015-02-20
·
Updated
2015-02-20
·
CVE-2015-0878
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
AL-Mail32 versions prior to 1.13d
Description
A directory traversal issue allows remote attackers to write to arbitrary files by crafting the filename of an attachment.
Recommendations
For versions prior to 1.13d, update to version 1.13d or later to resolve the issue.
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Al-Mail32