IceWarp webmail/basic/index.html _c Parameter Directory Traversal

medium Nessus Plugin ID 51098

Synopsis

The remote web server contains a script that is prone to a directory traversal attack.

Description

The version of IceWarp installed on the remote host is affected by a directory traversal vulnerability because the application fails to properly sanitize user-supplied input to the '_c' parameter of the '/webmail/basic/index.html' script.

An attacker could leverage this issue to read arbitrary file on the remote host, subject to the privileges of the web server user id.

Note that this version of IceWarp is likely to be affected by multiple cross-site scripting vulnerabilities, though Nessus has not tested for them.

Solution

Upgrade to IceWarp 10.2.1 or later.

See Also

https://www.icewarp.com/whats-new/#40

Plugin Details

Severity: Medium

ID: 51098

File Name: icewarp_webmail_c_param_dir_traversal.nasl

Version: 1.12

Type: remote

Family: CGI abuses

Published: 12/9/2010

Updated: 1/19/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: cpe:/a:icewarp:webmail

Required KB Items: www/icewarp_webmail

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Available: true

Exploit Ease: Exploits are available

Exploited by Nessus: true

Patch Publication Date: 12/7/2010

Vulnerability Publication Date: 12/7/2010

Reference Information

BID: 45222

Secunia: 42389