Directory Traversal Vulnerability in McAfee Email Gateway
CVE-2012-4596

Currently unrated

Key Information:

Vendor: Mcafee
Status: Email Gateway
Vendor: CVE Published:; 22 August 2012

Summary

A directory traversal vulnerability exists in the McAfee Email Gateway versions 7.0.0 and 7.0.1. This vulnerability allows remote authenticated users to exploit vulnerable URL handling mechanisms to bypass security measures. By crafting specific URLs, attackers can access and download arbitrary files from the server, posing a significant security risk to sensitive data and system integrity. Users are advised to update to the latest version and implement additional security measures to mitigate this risk.

References

http://www.securitytracker.com/id?1027444

vdb-entryx_refsource_SECTRACK

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

Timeline

Vulnerability published
Aug 22, 2012
Vulnerability Reserved
Aug 22, 2012