|
Family: Misc. --> Category: infos
MDaemon Content Filter Directory Traversal Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks for content filter directory traversal vulnerability in MDaemon
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote mail server is prone to directory traversal attacks.
Description :
The remote host is running Alt-N MDaemon, an SMTP/IMAP server for
Windows.
According to its banner, the version of MDaemon on the remote host is
prone to a directory traversal flaw that can be exploited to overwrite
files outside the application's quarantine directory provided
MDaemon's attachment quarantine feature is enabled.
See also :
http://secunia.com/advisories/16173/
http://files.altn.com/MDaemon/Release/RelNotes_en.txt
Solution :
Upgrade to MDaemon version 8.1.0 or later.
Threat Level:
High / CVSS Base Score : 8
(AV:R/AC:H/Au:NR/C:C/A:C/I:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|