CVE-2006-0818
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
5Exploited in Wild
-Decision
Descriptions
Absolute path directory traversal vulnerability in (1) MERAK Mail Server for Windows 8.3.8r with before IceWarp Web Mail 5.6.1 and (2) VisNetic MailServer before 8.5.0.5 allows remote authenticated users to include arbitrary files via a modified language parameter and a full Windows or UNC pathname in the lang_settings parameter to mail/index.html, which is not properly sanitized by the validatefolder PHP function, possibly due to an incomplete fix for CVE-2005-4558.
Vulnerabilidad de salto de directorio de ruta absoluta en (1) MERAK Mail Server para Windows 8.3.8r con anteriores IceWarp Web Mail 5.6.1 y (2) VisNetic MailServer anterior a 8.5.0.5 permite a usuarios remotos validados incluir archivos de su elección a través del parámetro language modificado y un nombre de ruta completo Windows o UNC en el parámetro lang_settings en mail/index.html, lo cual no es saneadoo de forma adecuada por la función PHP validatefolder, posiblemente debido a una solución incompleta para CVE-2005-4558.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2006-02-21 CVE Reserved
- 2006-07-18 CVE Published
- 2023-12-11 EPSS Updated
- 2024-08-07 CVE Updated
- 2024-08-07 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (12)
| URL | Tag | Source |
|---|---|---|
| http://securitytracker.com/id?1016513 | Vdb Entry | |
| http://securitytracker.com/id?1016514 | Vdb Entry | |
| http://www.securityfocus.com/archive/1/440297/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/archive/1/440302/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/19007 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2006/2825 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/27780 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/18953 | 2024-08-07 | |
| http://secunia.com/advisories/18966 | 2024-08-07 | |
| http://secunia.com/secunia_research/2006-12/advisory | 2024-08-07 | |
| http://secunia.com/secunia_research/2006-14/advisory | 2024-08-07 | |
| http://www.securityfocus.com/bid/19002 | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Deerfield Search vendor "Deerfield" | Visnetic Mail Server Search vendor "Deerfield" for product "Visnetic Mail Server" | 8.3.5 Search vendor "Deerfield" for product "Visnetic Mail Server" and version "8.3.5" | - |
Affected
| ||||||
| Icewarp Search vendor "Icewarp" | Web Mail Search vendor "Icewarp" for product "Web Mail" | 5.6.0 Search vendor "Icewarp" for product "Web Mail" and version "5.6.0" | - |
Affected
| ||||||
| Merak Search vendor "Merak" | Mail Server Search vendor "Merak" for product "Mail Server" | 8.3.8r Search vendor "Merak" for product "Mail Server" and version "8.3.8r" | windows |
Affected
| ||||||