Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0127

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2006-0127
Last Modified 07 Mar 2011 09:29:22
Published 09 Jan 2006 06:03:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2006-0127

Summary

Directory traversal vulnerability in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote authenticated users to rename the folders of other users via a .. (dot dot) in the RENAME command.

Vulnerable Systems

Application

  • Rockliffe Mailsite 6.1.22.0


References

MISC - http://zur.homelinux.com/Advisories/RockliffeMailsiteDirTransveral.txt

OSVDB - 22229

SECUNIA - 18318

FULLDISC - 20060104 Rockliffe Directory Transversal Vulnerability

VUPEN - ADV-2006-0055

FULLDISC - 20060105 Re: Rockliffe Directory Transversal Vulnerability


Last Updated: 27 May 2016 10:41:32