Directory traversal vulnerability in CREAR AL-Mail32 before 1.13d allows remote attackers to write to arbitrary files via a crafted filename of an attachment.
References
Link | Resource |
---|---|
http://jvn.jp/en/jp/JVN77294617/index.html | Vendor Advisory |
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000020 | Vendor Advisory |
http://www.almail.com/vulnerability.html | Patch Vendor Advisory |
Configurations
History
No history.
Information
Published : 2015-02-20 11:59
Updated : 2024-02-04 18:35
NVD link : CVE-2015-0878
Mitre link : CVE-2015-0878
CVE.ORG link : CVE-2015-0878
JSON object : View
Products Affected
almail
- al-mail32
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')