Lucene search
K

7 matches found

NVD
NVD
added 2006/06/02 12:2 a.m.15 views

CVE-2006-2308

Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other user's email messages, create/rename arbitrary directories on the system, and delete empty directories via directory traversal sequences in the 1 CREATE, 2 SELECT, 3 DELETE, 4...

5.5CVSS6.3AI score0.01644EPSS
Exploits0References8
Prion
Prion
added 2006/06/02 12:2 a.m.19 views

Directory traversal

Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other user's email messages, create/rename arbitrary directories on the system, and delete empty directories via directory traversal sequences in the 1 CREATE, 2 SELECT, 3 DELETE, 4...

5.5CVSS6.8AI score0.01644EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2006/06/02 12:2 a.m.13 views

Design/Logic Flaw

The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests containing dot, space, and slash characters, which reveals the source code of script files...

4CVSS7AI score0.01609EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2006/06/02 12:0 a.m.51 views

CVE-2006-2309

The CVE-2006-2309 issue affects EServ/3.25 HTTP server where crafted requests containing dot, space, and slash characters can disclose the source code of script files. Secunia reports directory traversal and filename-extension validation flaws enabling disclosure; affected software is EServ/3 ver...

4CVSS6.4AI score0.01609EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2006/06/02 12:0 a.m.46 views

CVE-2006-2308

The CVE-2006-2308 entry affects EServ/3 IMAP service (version 3.25). The vulnerability is a directory traversal in IMAP commands (CREATE, SELECT, DELETE, RENAME, COPY, APPEND) that allows remote authenticated users to read other users’ emails and manipulate directories (create/rename/remove). Roo...

5.5CVSS6.3AI score0.01644EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2006/06/02 12:0 a.m.29 views

CVE-2006-2308

Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other user's email messages, create/rename arbitrary directories on the system, and delete empty directories via directory traversal sequences in the 1 CREATE, 2 SELECT, 3 DELETE, 4...

6.3AI score0.01644EPSS
Exploits0References8
Cvelist
Cvelist
added 2006/06/02 12:0 a.m.16 views

CVE-2006-2309

The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests containing dot, space, and slash characters, which reveals the source code of script files...

6.4AI score0.01609EPSS
Exploits0References8
Rows per page
Query Builder