VYPR
Unrated severityNVD Advisory· Published Sep 20, 2001· Updated Jun 16, 2026

CVE-2001-0642

CVE-2001-0642

Description

Directory traversal vulnerability in IncrediMail version 1400185 and earlier allows local users to overwrite files on the local hard drive by appending .. (dot dot) sequences to filenames listed in the content.ini file.

Affected products

2
  • cpe:2.3:a:incredimail:incredimail:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:incredimail:incredimail:*:*:*:*:*:*:*:*range: <=1400185
    • (no CPE)range: <=1400185

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.