CVE-2008-0464

N/A Unknown

Published: January 25, 2008 Modified: April 23, 2026

Description

Directory traversal vulnerability in archiv.cgi in absofort aconon Mail 2007 Enterprise SQL 11.7.0 and Mail 2004 Enterprise SQL 11.5.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the template parameter.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://burnachurch.com/67/directory-traversal-luecke-in-aconon-mail/

Source: cve@mitre.org

http://lists.grok.org.uk/pipermail/full-disclosure/2008-January/059856.html

Source: cve@mitre.org

Exploit

http://secunia.com/advisories/28617

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/27427

Source: cve@mitre.org

Exploit

http://www.vupen.com/english/advisories/2008/0310

Source: cve@mitre.org

https://www.exploit-db.com/exploits/4977

Source: cve@mitre.org

http://burnachurch.com/67/directory-traversal-luecke-in-aconon-mail/