QuarkMail Directory Traversal Vulnerability

vendor:

QuarkMail

by:

SecurityFocus

7.5

CVSS

HIGH

Directory Traversal

CWE

Product Name: QuarkMail

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: YES

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

QuarkMail Directory Traversal Vulnerability

QuarkMail is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks.

Mitigation:

Input validation should be used to prevent directory traversal attacks.

Source

QuarkMail Directory Traversal Vulnerability

Mitigation:

Exploit-DB raw data: