Lucene search

PRIOn knowledge basePRION:CVE-2006-2917

HistoryJul 10, 2006 - 7:05 p.m.

Directory traversal

2006-07-1019:05:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

73.0%

JSON

Directory traversal vulnerability in the IMAP server in WinGate 6.1.2.1094 and 6.1.3.1096, and possibly other versions before 6.1.4 Build 1099, allows remote authenticated users to read email of other users, or perform unauthorized operations on directories, via the (1) CREATE, (2) SELECT, (3) DELETE, (4) RENAME, (5) COPY, (6) APPEND, and (7) LIST commands.

CPENameOperatorVersion
wingateeq6.1.2.1094
wingateeq6.1.3.1096

CPE	Name	Operator	Version
	wingate	eq	6.1.2.1094
	wingate	eq	6.1.3.1096

References

secunia.com/advisories/20707

secunia.com/secunia_research/2006-48/advisory/

www.securityfocus.com/bid/18908

www.vupen.com/english/advisories/2006/2730

www.wingate.com/download.php

7 High

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

73.0%

JSON

Related for PRION:CVE-2006-2917