Vulnonym.com

CVE-2006-5210 - Caboshed Factor

Description

Directory traversal vulnerability in IronWebMail before 6.1.1 HotFix-17 allows remote attackers to read arbitrary files via a GET request to the IM_FILE identifier with double-url-encoded ../\ sequences (\%252e%252e/).

Reference

https://supportcenter.ciphertrust.com/vulnerability/IWM501-01.html http://www.symantec.com/enterprise/research/SYMSA-2006-010.txt http://www.securityfocus.com/bid/20436 http://securitytracker.com/id?1017069 http://secunia.com/advisories/22406 http://securityreason.com/securityalert/1726 http://www.vupen.com/english/advisories/2006/4055 https://exchange.xforce.ibmcloud.com/vulnerabilities/29620 ironwebmail-url-directory-traversal(29620) http://www.securityfocus.com/archive/1/448779/100/0/threaded Directory traversal vulnerability in IronWebMail before 6.1.1 HotFix-17 allows remote attackers to read arbitrary files via a GET request to the IM_FILE identifier with double-url-encoded ../
sequences (\%252e%252e/).