Document Title:
Mailspect Control Panel version 4.0.5 Multiple Vulnerabilities
Release Date:
===
June 21, 2014
Product Service Introduction:
Mailspect is the email security and archiving brand of RAE Internet Inc.,
Tarrytown, New York. The
Advisory: Python CGIHTTPServer File Disclosure and Potential Code
Execution
The CGIHTTPServer Python module does not properly handle URL-encoded
path separators in URLs. This may enable attackers to disclose a CGI
script's source code or execute arbitrary CGI scripts in the server's