Multiple directory traversal vulnerabilities in Alt-N WebAdmin 3.2.3 and 3.2.4 running with MDaemon 9.0.5, and possibly earlier, allow remote authenticated global administrators to read arbitrary files via a .. (dot dot) in the file parameter to (1) logfile_view.wdm and (2) configfile_view.wdm.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
alt-n webadmin 3.2.4 |
||
alt-n webadmin 3.2.3 |