Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2002-1581

Directory traversal vulnerability in nph-mr.cgi in Mailreader.com 2.3.20 through 2.3.31 allows remote attackers to view arbitrary files via .. (dot dot) sequences and a null byte (%00) in the configLanguage parameter.

See the

CVE page on Mitre.org for more details.

References

BUGTRAQ: 20021028 SCAN Associat...
CONFIRM: http://mailreader.com/...
DEBIAN: DSA-534
BID: 6055
XF: mailreader-dotdot-dire...
MISC: http://mailreader.com/...

Launchpad.net

CVE 2002-1581

Related bugs

References