Unrated severityNVD Advisory· Published Sep 20, 2001· Updated Jun 16, 2026
CVE-2001-0642
CVE-2001-0642
Description
Directory traversal vulnerability in IncrediMail version 1400185 and earlier allows local users to overwrite files on the local hard drive by appending .. (dot dot) sequences to filenames listed in the content.ini file.
Affected products
2cpe:2.3:a:incredimail:incredimail:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:incredimail:incredimail:*:*:*:*:*:*:*:*range: <=1400185
- (no CPE)range: <=1400185
Patches
Vulnerability mechanics
References
2- archives.neohapsis.com/archives/bugtraq/2001-05/0078.htmlnvdExploitVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/6529nvd
News mentions
0No linked articles in our index yet.