← volver
CVE-2005-0313

CVE-2005-0313

EPSS 3.4%
Multiple directory traversal vulnerabilities in Magic Winmail Server 4.0 Build 1112 allow remote attackers to (1) upload arbitrary files via certain parameters to upload.php or (2) read arbitrary files via certain parameters to download.php, and remote authenticated users to read, create, or delete arbitrary directories and files via the IMAP commands (3) CREATE, (4) EXAMINE, (5) SELECT, or (6) DELETE.
Productos afectados
n/a · n/a
PoCs públicas encontradas2
exploitdbwww.exploit-db.com/exploits/25064no verificadoexploitdbwww.exploit-db.com/exploits/25065no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://marc.info/?l=bugtraq&m=110685011825461&w=2http://secunia.com/advisories/14053http://securitytracker.com/id?1013017https://exchange.xforce.ibmcloud.com/vulnerabilities/19108https://exchange.xforce.ibmcloud.com/vulnerabilities/19114http://www.securityfocus.com/bid/12388