VULHUB ™

Certain versions of the FTGate Advanced Mail Server have a vulnerability in their web based administration interface. The vulnerability is that the webserver allows users to traverse the directory structure outside of the Webroot directory. Therefore malicious users may read files outside of their permitted areas, including but not limited to private email and password files.

Certain versions of the FTGate Advanced Mail Server have a vulnerability in their web based administration interface. The vulnerability is that the webserver allows users to traverse the directory structure outside of the Webroot directory. Therefore malicious users may read files outside of their permitted areas, including but not limited to private email and password files.