Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3691

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-3691
Last Modified 07 Mar 2011 09:26:59
Published 18 Nov 2005 08:03:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3691

Summary

Directory traversal vulnerability in the IMAP service (meimaps.exe) of MailEnable Professional 1.6 and earlier and Enterprise 1.1 and earlier allows remote attackers to create or rename arbitrary mail directories via the mailbox name argument of the (1) create or (2) rename commands.

Vulnerable Systems


References

CONFIRM - http://www.mailenable.com/hotfix/

MISC - http://secunia.com/secunia_research/2005-59/advisory/

SECUNIA - 17633

VUPEN - ADV-2005-2484

BID - 15494

SECTRACK - 1015239


Last Updated: 27 May 2016 10:41:00