CVE-2004-2446 Information

Description

Directory traversal vulnerability in 1st Class Mail Server 4.01 allows remote attackers to read arbitrary files via a ..\ (dot dot) sequences in unknown vectors.

Reference

http://members.lycos.co.uk/r34ct/main/1st20Class20mail20server204.01.txt http://secunia.com/advisories/11330 http://securitytracker.com/alerts/2004/Apr/1009705.html http://www.osvdb.org/5011 http://www.securityfocus.com/bid/10089 https://exchange.xforce.ibmcloud.com/vulnerabilities/15812