CVE-2000-0318
First published: Fri Apr 21 2000(Updated: )
Atrium Mercur Mail Server 3.2 allows local attackers to read other user's email and create arbitrary files via a dot dot (..) attack.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mercury Mail Server | =3.2 | |
| =3.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2000-0318?
The severity of CVE-2000-0318 is considered moderate as it allows local attackers to access other users' emails and create arbitrary files.
How do I fix CVE-2000-0318?
To fix CVE-2000-0318, upgrade to a later version of the Atrium Mercur Mail Server that addresses this vulnerability.
Who is affected by CVE-2000-0318?
Users of Atrium Mercur Mail Server version 3.2 are affected by CVE-2000-0318.
What kind of attack does CVE-2000-0318 allow?
CVE-2000-0318 allows for a dot dot (..) attack that can lead to unauthorized access to other users' emails.
Is there a workaround for CVE-2000-0318?
As of now, the best mitigation for CVE-2000-0318 is to apply the available software update or patch.
- agent/references
- agent/first-publish-date
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/description
- agent/last-modified-date
- agent/author
- agent/event
- agent/source
- collector/nvd-historical
- vendor/atrium software
- product/mercur mailserver
- canonical/atrium software mercur mailserver
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- canonical/mercury mail server
- version/mercury mail server/3.2