3 matches found
CVE-2018-7706
Directory traversal vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote authenticated users to read arbitrary e-mail messages via a .. dot dot in the option2 parameter in an attachment action to secmail/getmessage.exe...
CVE-2018-7706
CVE-2018-7706 affects SecurEnvoy SecurMail prior to 9.2.501. A directory-traversal flaw in the attachment action to secmail/getmessage.exe can be exploited by remote authenticated users to read arbitrary emails via the ".." sequence in the option2 parameter. The condition is tied to a pre-9.2.501...
SecurEnvoy SecurMail 9.1.501 - Multiple Vulnerabilities
SecurEnvoy SecurMail 9.1.501 - Multiple Vulnerabilities SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Critical Vulnerabilities product: SecurEnvoy SecurMail vulnerable version: 9.1.501 fixed version: 9.2.501...