Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

MDaemon < 8.1.0 Content Filter Traversal Arbitrary File Overwrite

High

Synopsis

The remote host is vulnerable to a directory traversal flaw.

Description

The remote host is running Alt-N MDaemon, an SMTP/IMAP server for Windows. According to its banner, the version of MDaemon on the remote host is prone to a directory traversal flaw that can be exploited to overwrite files outside the application's quarantine directory provided MDaemon's attachment quarantine feature is enabled.

Solution

Upgrade to version 8.1.0 or higher.