Unrated severityNVD Advisory· Published Aug 21, 2006· Updated Jun 16, 2026

CVE-2006-4258

Description

Absolute path traversal vulnerability in the get functionality in Anti-Spam SMTP Proxy (ASSP) allows remote authenticated users to read arbitrary files via (1) C:\ (Windows drive letter), (2) UNC, and possibly other types of paths in the file parameter.

Affected products

ASSP/Anti-Spam SMTP Proxy Server2 versions
cpe:2.3:a:john_hanna:anti-spam_smtp_proxy_server:1.2.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:john_hanna:anti-spam_smtp_proxy_server:1.2.3:*:*:*:*:*:*:*
- (no CPE)

Patches

Vulnerability mechanics

References

secunia.com/advisories/21523nvdVendor Advisory
lists.grok.org.uk/pipermail/full-disclosure/2006-August/048853.htmlnvd
www.securityfocus.com/bid/19545nvd
www.vupen.com/english/advisories/2006/3289nvd
exchange.xforce.ibmcloud.com/vulnerabilities/28392nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000