← back
CVE-2005-1252

CVE-2005-1252

EPSS 12.5%
Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via "..\" (dot dot backslash) sequences in the query string argument in a GET request to a non-existent .jsp file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://securitytracker.com/id?1014047http://www.idefense.com/application/poi/display?id=242&type=vulnerabilitieshttp://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.htmlhttp://www.securityfocus.com/bid/13727