CVE-2005-3691
Published Nov 19, 2005
Last updated 14 years ago
Overview
- Description
- Directory traversal vulnerability in the IMAP service (meimaps.exe) of MailEnable Professional 1.6 and earlier and Enterprise 1.1 and earlier allows remote attackers to create or rename arbitrary mail directories via the mailbox name argument of the (1) create or (2) rename commands.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.00:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "FCAA0B95-5875-41CF-90BA-EF07D240FF08"
},
{
"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.1:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "45540A37-2CBF-453F-8EFF-696B9318499F"
},
{
"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.01:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "724E8638-CF5A-480B-89D7-0E029A0C5965"
},
{
"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.02:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "48B664B5-EEF9-4C5F-B23C-E4D54DBF2EC5"
},
{
"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.03:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E27EEFD5-19B1-4F0C-BD52-257594C37310"
},
{
"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.04:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "53BB6A16-65D3-43CF-BFB4-E0616476A979"
},
{
"criteria": "cpe:2.3:a:mailenable:mailenable_professional:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4B880760-D0E3-46C6-A12F-3D9A444C92C1",
"versionEndIncluding": "1.6"
}
],
"operator": "OR"
}
]
}
]