CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2001-1285

Directory traversal vulnerability in readmail.cgi for Ipswitch IMail 7.04 and earlier allows remote attackers to access the mailboxes of other users via a .. (dot dot) in the mbx parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 72.2%

CVSS Severity

CVSS v2 Score 5.0

References

http://archives.neohapsis.com/archives/bugtraq/2001-10/0082.html
http://www.ipswitch.com/Support/IMail/news.html
http://www.securityfocus.com/bid/3432
http://archives.neohapsis.com/archives/bugtraq/2001-10/0082.html
http://www.ipswitch.com/Support/IMail/news.html
http://www.securityfocus.com/bid/3432

Products affected by CVE-2001-1285

Ipswitch » Imail » Version: 6.0.2

cpe:2.3:a:ipswitch:imail:6.0.2
Ipswitch » Imail » Version: 6.0.6

cpe:2.3:a:ipswitch:imail:6.0.6
Ipswitch » Imail » Version: 7.0.4

cpe:2.3:a:ipswitch:imail:7.0.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-1285

Products

Pricing

Contact Us