Vulnerabilities > CVE-2006-0929 - Unspecified vulnerability in Argosoft Mail Server 1.8.8.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN argosoft
nessus
Summary
Directory traversal vulnerability in the IMAP server in ArGoSoft Mail Server Pro 1.8.8.1 allows remote authenticated users to create arbitrary folders via a .. (dot dot) in the RENAME command.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
| NASL family | Misc. |
| NASL id | ARGOSOFT_MS_IMAP_RENAME_DIR_TRAVERSAL.NASL |
| description | The remote host is running ArGoSoft Mail Server, a messaging system for Windows. The IMAP server bundled with the version of ArGoSoft Mail Server installed on the remote host fails to filter directory traversal sequences from mailbox names passed to the |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 20977 |
| published | 2006-02-25 |
| reporter | This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/20977 |
| title | ArGoSoft Mail Server Pro IMAP RENAME Command Traversal Arbitrary Directory Creation |
References
- http://secunia.com/advisories/18990
- http://secunia.com/advisories/18990
- http://www.nsag.ru/vuln/878.html
- http://www.nsag.ru/vuln/878.html
- http://www.securityfocus.com/archive/1/425969/100/0/threaded
- http://www.securityfocus.com/archive/1/425969/100/0/threaded
- http://www.securityfocus.com/bid/16809
- http://www.securityfocus.com/bid/16809
- http://www.vupen.com/english/advisories/2006/0733
- http://www.vupen.com/english/advisories/2006/0733