CVE-2002-1581

Mailreader.com <2.3.31 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1581. PoCs published by pokleyzz.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in Mailreader.com's nph-mr.cgi script, allowing remote attackers to read arbitrary files on the server by appending dot-dot-slash sequences and a null byte to a known resource request.

Description

Directory traversal vulnerability in nph-mr.cgi in Mailreader.com 2.3.20 through 2.3.31 allows remote attackers to view arbitrary files via .. (dot dot) sequences and a null byte (%00) in the configLanguage parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by pokleyzz · textwebappscgi
https://www.exploit-db.com/exploits/21966

This exploit demonstrates a directory traversal vulnerability in Mailreader.com's nph-mr.cgi script, allowing remote attackers to read arbitrary files on the server by appending dot-dot-slash sequences and a null byte to a known resource request.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Mailreader.com (version not specified)
No auth needed
Prerequisites: Access to the target web server · Knowledge of the path to a known resource
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Various Sources x_refsource_confirm
http://mailreader.com/download/ChangeLog
Patch, Vendor Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/10490.php
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/6055
Patch, Vendor Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2004/dsa-534
Exploit, Patch, Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/297428

Scores

EPSS 0.0764
EPSS Percentile 93.8%

Details

Status published
Products (13)
debian/debian_linux 3.0
mailreader.com/mailreader.com 2.3.20
mailreader.com/mailreader.com 2.3.21
mailreader.com/mailreader.com 2.3.22
mailreader.com/mailreader.com 2.3.23
mailreader.com/mailreader.com 2.3.24
mailreader.com/mailreader.com 2.3.25
mailreader.com/mailreader.com 2.3.26
mailreader.com/mailreader.com 2.3.27
mailreader.com/mailreader.com 2.3.28
... and 3 more
Published Dec 06, 2004
Tracked Since Feb 18, 2026