Directory Traversal Vulnerability in Proofpoint Messaging Security Gateway
CVE-2011-1902

Currently unrated

Key Information:

Vendor: Proofpoint
Status: Protection Server; Messaging Security Gateway
Vendor: CVE Published:; 5 May 2011

Summary

A directory traversal vulnerability exists within the web interface of Proofpoint Messaging Security Gateway and Protection Server, allowing remote attackers to exploit insufficient input validation. This can enable attackers to read arbitrary files on the affected systems, potentially leading to exposure of sensitive information. The issue affects multiple versions of the Messaging Security Gateway and several iterations of the Protection Server, highlighting a critical area for immediate attention by security teams.

References

https://support.proofpoint.com/article.cgi?article_id=338413

x_refsource_MISC

http://www.kb.cert.org/vuls/id/790980

third-party-advisoryx_refsource_CERT-VN

http://www.clearskies.net/documents/css-advisory-css1105-...

x_refsource_MISC

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 5, 2011