This article applies to:
- Trustwave MailMarshal (SEG) older unsupported versions
- MailMarshal Exchange older unsupported versions
Symptoms:
- Some much older versions of MailMarshal are vulnerable to Directory Traversal attacks when unpacking .TAR archives
- An attacker could create a specially crafted file to overwrite important operating system files and cause the system to execute malicious code.
Resolution:
Upgrade to the current supported version of the product.