Directory traversal vulnerability in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Messaging (IM) 2.0.8.1 and previous versions allows remote authenticated users to create arbitrary empty files via a .. (dot dot) in the recipient field.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ipswitch imserver |
||
ipswitch instant messaging |