Multiple directory traversal vulnerabilities in MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allows remote attackers to (1) delete arbitrary files or directories via a relative path to the id parameter to logout.html or (2) include arbitrary PHP files or other files via the helpid parameter to help.html.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-10-04T04:00:00

Updated: 2024-08-07T23:01:58.061Z

Reserved: 2005-10-04T00:00:00

Link: CVE-2005-3133

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2005-10-04T22:02:00.000

Modified: 2024-11-21T00:01:11.573

Link: CVE-2005-3133

cve-icon Redhat

No data.