CVE-2002-1004

ArGoSoft Mail Server Plus or Pro 1.8.1.5 - Directory Traversal via Webmail URL

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1004. PoCs published by team n.finity.

AI-analyzed exploit summary This script exploits a directory traversal vulnerability in ArGoSoft Mail Server's web interface to leak sensitive files (userdata.rec or log files) by crafting URLs with '/..' sequences. It supports different attack modes (Pro, Plus, Both) based on user input.

Description

Directory traversal vulnerability in webmail feature of ArGoSoft Mail Server Plus or Pro 1.8.1.5 and earlier allows remote attackers to read arbitrary files via .. (dot dot) sequences in a URL.

Exploits (1)

exploitdb WORKING POC VERIFIED
by team n.finity · bashremotewindows
https://www.exploit-db.com/exploits/21591

This script exploits a directory traversal vulnerability in ArGoSoft Mail Server's web interface to leak sensitive files (userdata.rec or log files) by crafting URLs with '/..' sequences. It supports different attack modes (Pro, Plus, Both) based on user input.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: ArGoSoft Mail Server 1.8.1.5 and earlier
No auth needed
Prerequisites: network access to the ArGoSoft Mail Server web interface
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0029.html
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/5144
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/9477.php

Scores

EPSS 0.0834
EPSS Percentile 94.2%

Details

Status published
Products (1)
argosoft/argosoft_mail_server 1.8.1.5 (2 CPE variants)
Published Oct 04, 2002
Tracked Since Feb 18, 2026