Lucene search

[email protected]CVE-2005-3189

HistoryNov 18, 2005 - 2:02 a.m.

CVE-2005-3189

2005-11-1802:02:00

[email protected]

web.nvd.nist.gov

cve

2005

3189

directory traversal

qualcomm

worldmail

imap

server

remote attackers

email messages

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.755 High

EPSS

Percentile

98.2%

JSON

Directory traversal vulnerability in Qualcomm WorldMail IMAP Server allows remote attackers to read arbitrary email messages via “…” sequences in the SELECT command.

Affected configurations

NVD

Node

qualcommworldmail_imap_serverMatch3.0

CPENameOperatorVersion
qualcomm:worldmail_imap_serverqualcomm worldmail imap servereq3.0

CPE	Name	Operator	Version
qualcomm:worldmail_imap_server	qualcomm worldmail imap server	eq	3.0

References

secunia.com/advisories/17640

securityreason.com/securityalert/192

securitytracker.com/id?1015236

www.idefense.com/application/poi/display?id=341&type=vulnerabilities

www.securityfocus.com/bid/15488

www.vupen.com/english/advisories/2005/2479

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.755 High

EPSS

Percentile

98.2%

JSON

Related for CVE-2005-3189

nvd1 securityvulns1 nessus1 cvelist1 packetstorm1 checkpoint_advisories1