Fixed Directory Name Vulnerability in IncrediMail

CVE-2002-0455 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

IncrediMail stores attachments in a directory with a fixed name, which could make it easier for attackers to exploit vulnerabilities in other software that rely on installing and reading files from directories with known pathnames.

Learn more about our Web Application Penetration Testing UK.