Vulnerability Description
Directory traversal vulnerability in the web interface in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to read arbitrary files via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Proofpoint | Messaging Security Gateway | <= 6.2.0.263\:6.2.0.237 |
| Proofpoint | Protection Server | 5.5.3 |
Related Weaknesses (CWE)
References
- http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php
- http://www.kb.cert.org/vuls/id/790980US Government Resource
- https://support.proofpoint.com/article.cgi?article_id=338413
- http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php
- http://www.kb.cert.org/vuls/id/790980US Government Resource
- https://support.proofpoint.com/article.cgi?article_id=338413
FAQ
What is CVE-2011-1902?
CVE-2011-1902 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Directory traversal vulnerability in the web interface in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6...
How severe is CVE-2011-1902?
CVE-2011-1902 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-1902?
Check the references section above for vendor advisories and patch information. Affected products include: Proofpoint Messaging Security Gateway, Proofpoint Protection Server.