Vulnerabilities > CVE-2005-1657 - Unspecified vulnerability in Mercur Messaging 2005Sp2
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Multiple directory traversal vulnerabilities in Mercur Messaging 2005 SP2 allow remote attackers to perform unauthorized file operations via the Folder.Id parameter to (1) deletefolder.ctml, (2) deletemessage.ctml, (3) origmessage.ctml, or (4) readmessage.ctml, the Message.Id parameter to editmessage.ctml, or the (5) Message.Command parameter to messages.ctml.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://secunia.com/advisories/15234
- http://secunia.com/advisories/15234
- http://www.osvdb.org/16220
- http://www.osvdb.org/16220
- http://www.osvdb.org/16221
- http://www.osvdb.org/16221
- http://www.osvdb.org/16222
- http://www.osvdb.org/16222
- http://www.osvdb.org/16223
- http://www.osvdb.org/16223
- http://www.osvdb.org/16224
- http://www.osvdb.org/16224
- http://www.osvdb.org/16225
- http://www.osvdb.org/16225