← Voltar para CVEs
CVE-2005-0332
N/ADescricao
Directory traversal vulnerability in DeskNow Mail and Collaboration Server 2.5.12 allows remote attackers to (1) upload and possibly execute files outside the directory via the AttachmentsKey parameter to attachment.do, as demonstrated using JSP pages, or (2) delete arbitrary files via the select_file parameter to file.do.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado5/2/2005
Ultima modificacao4/16/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
ventia:desknow_mail_and_collaboration_server
Referencias
http://marc.info/?l=bugtraq&m=110737616324614&w=2(cve@mitre.org)
http://secunia.com/advisories/14116(cve@mitre.org)
http://securitytracker.com/id?1013060(cve@mitre.org)
http://www.security.org.sg/vuln/desknow2512.html(cve@mitre.org)
http://www.securityfocus.com/bid/12421(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19206(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19211(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19212(cve@mitre.org)
http://marc.info/?l=bugtraq&m=110737616324614&w=2(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/14116(af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1013060(af854a3a-2127-422b-91ae-364da2661108)
http://www.security.org.sg/vuln/desknow2512.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/12421(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19206(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19211(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19212(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.