3 matches found
CVE-2004-1206
CVE-2004-1206 affects pnTresMailer 6.0.3 in codebrowserpntm.php, where a directory traversal via .. in the filetodownload parameter enables reading arbitrary server files. Impact described as read access with web server privileges; remediation guidance in connected reports is to upgrade to the la...
CVE-2004-1206
Directory traversal vulnerability in codebrowserpntm.php in pnTresMailer 6.0.3 allows remote attackers to read arbitrary files via a .. dot dot in the filetodownload parameter...
PostNuke pnTresMailer codebrowserpntm.php Traversal Arbitrary File Access
The remote host is running a version of the pnTresMailer PostNuke module which is vulnerable to a directory traversal attack. An attacker may use this flaw to read arbitrary files on the remote web server, with the privileges of the web server process. %NASLMINLEVEL 70300 C Tenable Network...