DeskNow Mail and Collaboration file.do Traversal Arbitrary File Deletion

2005-02-02T06:45:22
ID OSVDB:13458
Type osvdb
Reporter OSVDB
Modified 2005-02-02T06:45:22

Description

Solution Description

Upgrade to version 2.5.14 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.desknow.com/desknowmc/index.html Security Tracker: 1013060 Secunia Advisory ID:14116 Related OSVDB ID: 13457 Other Advisory URL: http://www.security.org.sg/vuln/desknow2512.html Nessus Plugin ID:16308 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-01/0371.html CVE-2005-0332