CVE-2005-1902

Опубликовано: 09 июн. 2005

Источник: nvd

CVSS2: 3.6

EPSS Низкий

Описание

Directory traversal vulnerability in the IMAP service for SPA-PRO Mail @Solomon 4.00 allows remote authenticated users to read other users' mail and perform operations on arbitrary directories via .. sequences in the (1) SELECT, (2) CREATE, (3) DELETE, and (4) RENAME commands.

Ссылки

http://secunia.com/advisories/15573
Patch
Vendor Advisory
http://securitytracker.com/id?1014095
http://www.osvdb.org/16989
http://www.security.org.sg/vuln/spa-promail4.html
Exploit
Patch
Vendor Advisory
http://www.vupen.com/english/advisories/2005/0680
https://exchange.xforce.ibmcloud.com/vulnerabilities/20860
http://secunia.com/advisories/15573
Patch
Vendor Advisory
http://securitytracker.com/id?1014095
http://www.osvdb.org/16989
http://www.security.org.sg/vuln/spa-promail4.html
Exploit
Patch
Vendor Advisory
http://www.vupen.com/english/advisories/2005/0680
https://exchange.xforce.ibmcloud.com/vulnerabilities/20860

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:e-post_corporation:spa-pro_mail_atsolomon:4.00:*:*:*:*:*:*:*

EPSS

Процентиль: 86%

0.03096

Низкий

3.6 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-w65q-rj92-wfcc

github

почти 4 года назад