Vulnerabilities > CVE-2005-1902 - Directory Traversal vulnerability in E-Post Corporation Spa-Pro Mail Atsolomon 4.00
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Directory traversal vulnerability in the IMAP service for SPA-PRO Mail @Solomon 4.00 allows remote authenticated users to read other users' mail and perform operations on arbitrary directories via .. sequences in the (1) SELECT, (2) CREATE, (3) DELETE, and (4) RENAME commands.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |