• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

SPA-PRO Mail @Solomon IMAP Server Multiple Directory Traversal Vulnerabilities

SPA-PRO Mail @Solomon IMAP Server is susceptible to directory traversal vulnerabilities in multiple IMAP commands. These issues are due to a failure of the application to properly sanitize user-supplied input.

These issues allow remote attackers to read, modify, or destroy other user's mail, as well as create arbitrary directories, rename directories, or delete empty directories. The information gained from accessing other user's email may aid malicious users in further attacks.