CVE-2006-5210
Summary: CVE-2006-5210 is a directory traversal vulnerability in IronWebMail (IronMail appliance) prior to 6.1.1 HotFix-17. An unauthenticated attacker can read arbitrary files by crafting a request to the IM_FILE identifier with double-url-encoded sequences (e.g., %252e%252e/). Affected software...