CVE-2002-0417

2002-08-12T04:00:00
ID CVE-2002-0417
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T20:27:00

Description

Directory traversal vulnerability in Endymion MailMan before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) and a null character in the ALTERNATE_TEMPLATES parameter for various mmstdo*.cgi programs.