Axigen Webmail Directory Traversal Vulnerability Network Vulnerability

Summary

Axigen Webmail is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. Axigen Webmail 7.4.1 is vulnerable other versions may be affected.

Solution

Vendor updates are available. Please see the references for more information.

References

http://www.axigen.com/
http://www.axigen.com/press/product-releases/axigen-releases-version-742_74.html
https://www.securityfocus.com/bid/43230

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-3459, CVE-2010-3460

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Afian 'includer.php' Directory Traversal Vulnerability
AMSI 'file' Parameter Directory Traversal Vulnerability
Andromeda Streaming MP3 Server Cross Site Scripting Vulnerability
Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
Adobe Presenter viewer.swf and loadflash.js XSS Vulnerability

Take action and discover your vulnerabilities