CVE-2002-0455

IncrediMail stores attachments in a directory with a fixed name, which could make it easier for attackers to exploit vulnerabilities in other software that rely on installing and reading files from directories with known pathnames.

Published: Aug 12, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0455
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
incredimail / incredimail	build_560	build_560.x
incredimail / incredimail	build_1400185	build_1400185.x
incredimail / incredimail	build_618	build_618.x

http://www.iss.net/security_center/static/8460.php
http://www.securityfocus.com/archive/1/262262
http://www.securityfocus.com/bid/4297

Vulnerability Database

CVE-2002-0455