CVE-2005-1283
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
22/04/2005
Last modified:
03/04/2025
Description
Multiple directory traversal vulnerabilities in Argosoft Mail Server Pro 1.8.7.6 allow remote authenticated users to (1) read arbitrary files via the UIDL parameter to the msg script or (2) copy or move the user's .eml file to arbitrary locations via the delete script, a different vulnerability than CVE-2005-0367.
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:argosoft:argosoft_mail_server:1.8.7.6:*:pro:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://marc.info/?l=bugtraq&m=111419001527077&w=2
- http://www.osvdb.org/15821
- http://www.osvdb.org/15823
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20226
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20229
- http://marc.info/?l=bugtraq&m=111419001527077&w=2
- http://www.osvdb.org/15821
- http://www.osvdb.org/15823
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20226
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20229