Vulnerabilities > CVE-2006-4951 - Unspecified vulnerability in Neosys Neon Webmail 5.06/5.07
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Neon WebMail for Java before 5.08 allows remote attackers to execute arbitrary Java (JSP) code by sending an e-mail message with a JSP file attachment, which is stored under the web root with a predictable filename.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
References
- http://secunia.com/advisories/22029
- http://secunia.com/advisories/22029
- http://vuln.sg/neonmail506-en.html
- http://vuln.sg/neonmail506-en.html
- http://www.securityfocus.com/bid/20109
- http://www.securityfocus.com/bid/20109
- http://www.securityfocus.com/bid/84198
- http://www.securityfocus.com/bid/84198
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29086
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29086