CVE-2004-2586

2005-11-2823:00:00

mitre

www.cve.org

AI Score

6.7

Confidence

Low

EPSS

0.007

Percentile

79.8%

JSON

Directory traversal vulnerability in frmGetAttachment.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to read arbitrary files via the filename parameter.

References

members.lycos.co.uk/r34ct/main/smarter_mail%203.1/smarter_mail.txt

secunia.com/advisories/11042

securitytracker.com/id?1009307

www.zone-h.org/advisories/read/id=4098

exchange.xforce.ibmcloud.com/vulnerabilities/15389