[] NeoSense
E X P L O I T S
title author type platform port cve id

Sun JavaMail 1.3.2 - 'MimeBodyPart.getFileName' Directory Traversal

Author: Rafael San Miguel Carrasco
type: remote
platform: multiple
port: nan
date_added: 2005-04-12 
date_updated: 2013-05-13 
verified: 1 
codes: CVE-2005-1105;OSVDB-15644 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/13141/info

Sun JavaMail is prone to a directory traversal vulnerability. This arises because the API fails to properly validate filenames in email attachments received by the applet.

This issue was reported to affect JavaMail 1.3.2, however, earlier versions may also be vulnerable.

Content-Disposition: ../../../file.ext
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.