CVE-2002-0418 Information
Feb 14, 2021
cve
Description
Directory traversal vulnerability in the com.endymion.sake.servlet.mail.MailServlet servlet for Endymion SakeMail 1.0.36 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) and a null character in the param_name parameter.
Reference
http://online.securityfocus.com/archive/1/259730 http://www.iss.net/security_center/static/8358.php http://www.securityfocus.com/bid/4223
Share on: