This script is Copyright (C) 2006-2011 Tenable Network Security, Inc.
The remote IMAP server is subject to directory traversal attacks.
The remote host is running ArGoSoft Mail Server, a messaging system
The IMAP server bundled with the version of ArGoSoft Mail Server
installed on the remote host fails to filter directory traversal
sequences from mailbox names passed to the 'RENAME' command. An
authenticated attacker can exploit this issue to move mailboxes to any
location on the affected system.
See also :
Upgrade to ArGoSoft Mail Server 184.108.40.206 or later.
Risk factor :
Medium / CVSS Base Score : 4.0
CVSS Temporal Score : 3.8
Public Exploit Available : true