{"id": "EDB-ID:26313", "vendorId": null, "type": "exploitdb", "bulletinFamily": "exploit", "title": "Merak Mail Server 8.2.4 r - Arbitrary File Deletion", "description": "", "published": "2005-09-30T00:00:00", "modified": "2005-09-30T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://www.exploit-db.com/exploits/26313", "reporter": "ShineShadow", "references": [], "cvelist": ["2005-3133"], "immutableFields": [], "lastseen": "2022-08-16T08:43:50", "viewCount": 9, "enchantments": {"score": {"value": 0.0, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": 0.0}, "_state": {"dependencies": 1661190352, "score": 1661184847, "epss": 1678800746}, "_internal": {"score_hash": "eb18a71889e78bec54174c1a16a6e9a0"}, "sourceHref": "https://www.exploit-db.com/download/26313", "sourceData": "source: https://www.securityfocus.com/bid/14988/info\r\n\r\nMerak Mail Server is affected by an arbitrary file deletion vulnerability. This issue arises due to an input validation error allowing an attacker to delete files in the context of the Web server running the application.\r\n\r\nAn attacker can exploit this issue to cause a denial of service condition due to data corruption.\r\n\r\nMerak Mail Server version 8.2.4r is affected by this vulnerability. \r\n\r\nhttp://www.example.com:32000/mail/logout.html?id=[relative path]\r\nhttp://www.example.com:32000/mail/logout.html?id=[relative path]%00blabla ", "osvdbidlist": ["19830"], "exploitType": "webapps", "verified": true}
Merak Mail Server 8.2.4 r - Arbitrary File Deletion