Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0642

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2001-0642
Last Modified 05 Sep 2008 04:24:35
Published 20 Sep 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0642

Summary

Directory traversal vulnerability in IncrediMail version 1400185 and earlier allows local users to overwrite files on the local hard drive by appending .. (dot dot) sequences to filenames listed in the content.ini file.

Vulnerable Systems

Application

  • Incredimail 1400185


References

XF - incredimail-dot-overwrite-files(6529)

BUGTRAQ - 20010511 [eyeonsecurity.net] Incredimail allows automatic over writing offiles on your hard disk


Last Updated: 27 May 2016 10:36:20