6.7 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
78.3%
Directory traversal vulnerability in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote authenticated users to rename the folders of other users via a … (dot dot) in the RENAME command.
lists.grok.org.uk/pipermail/full-disclosure/2006-January/040969.html
lists.grok.org.uk/pipermail/full-disclosure/2006-January/041039.html
secunia.com/advisories/18318
www.osvdb.org/22229
www.vupen.com/english/advisories/2006/0055
zur.homelinux.com/Advisories/RockliffeMailsiteDirTransveral.txt