CVE-2005-3468

Description

Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 6.40 and Internet Gatekeeper 6.40 to 6.42 allows limited remote attackers to bypass Web Console authentication and read files.

Affected products

• F-Secure / f-secure_anti-virus6.40 – 6.40
• F-Secure / internet_gatekeeper6.4 – 6.4
• F-Secure / internet_gatekeeper6.41 – 6.41
• F-Secure / internet_gatekeeper6.42 – 6.42

References

• MISChttp://securitytracker.com/id?1015143
• MISChttp://securitytracker.com/id?1015142
• MISChttp://www.securityfocus.com/bid/15284
• VENDOR_ADVISORYhttp://secunia.com/advisories/17361
• MISChttp://www.f-secure.com/security/fsc-2005-2.shtml
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2005/2277