mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
794 B
794 B
CVE-2008-0946
Description
Directory traversal vulnerability in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote authenticated users to create arbitrary empty files via a .. (dot dot) in the recipient field.
POC
Reference
- http://aluigi.altervista.org/adv/ipsimene-adv.txt
- http://aluigi.org/poc/ipsimene.zip
- http://securityreason.com/securityalert/3697
Github
No PoCs found on GitHub currently.