← voltar
CVE-2006-5487

CVE-2006-5487

EPSS 3.9%
Directory traversal vulnerability in Marshal MailMarshal SMTP 5.x, 6.x, and 2006, and MailMarshal for Exchange 5.x, allows remote attackers to write arbitrary files via ".." sequences in filenames in an ARJ compressed archive.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://secunia.com/advisories/22806http://securityreason.com/securityalert/1857http://securitytracker.com/id?1017209https://exchange.xforce.ibmcloud.com/vulnerabilities/30188http://www.marshal.com/kb/article.aspx?id=11450http://www.securityfocus.com/archive/1/451143/100/0/threadedhttp://www.securityfocus.com/bid/20999http://www.vupen.com/english/advisories/2006/4457http://www.zerodayinitiative.com/advisories/ZDI-06-039.html