CVE-2005-0184 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2005-0184
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-0184

Description: Directory traversal vulnerability in ftpfile in the Vacation plugin 0.15 and earlier for Squirrelmail allows local users to read arbitrary files via a .. (dot dot) in a get request.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/18856 ST 1012866 SAID Secunia Advisory: SA13791 MISC http://security.lss.hr/en/index.php?page=details&ID=LSS-2005-01-03 CONFIRM http://www.squirrelmail.org/plugin_view.php?id=51 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=110549426300953&w=2 BID 12222

Return to the previous page.