CVE-2004-1670

2004-09-10T04:00:00
ID CVE-2004-1670
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:31:00

Description

Multiple directory traversal vulnerabilities Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7, and possibly other versions, allow remote attackers to (1) create arbitrary directories via a .. (dot dot) in the user parameter to viewaction.html or (2) rename arbitrary files via a ....// (doubled dot dot) in the folderold or folder parameters to folders.html.