Vulnerability Description
Directory traversal vulnerability in Qualcomm WorldMail IMAP Server allows remote attackers to read arbitrary email messages via ".." sequences in the SELECT command.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Worldmail Imap Server | 3.0 |
References
- http://secunia.com/advisories/17640
- http://securityreason.com/securityalert/192
- http://securitytracker.com/id?1015236
- http://www.idefense.com/application/poi/display?id=341&type=vulnerabilitiesVendor Advisory
- http://www.securityfocus.com/bid/15488
- http://www.vupen.com/english/advisories/2005/2479
- http://secunia.com/advisories/17640
- http://securityreason.com/securityalert/192
- http://securitytracker.com/id?1015236
- http://www.idefense.com/application/poi/display?id=341&type=vulnerabilitiesVendor Advisory
- http://www.securityfocus.com/bid/15488
- http://www.vupen.com/english/advisories/2005/2479
FAQ
What is CVE-2005-3189?
CVE-2005-3189 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Directory traversal vulnerability in Qualcomm WorldMail IMAP Server allows remote attackers to read arbitrary email messages via ".." sequences in the SELECT command.
How severe is CVE-2005-3189?
CVE-2005-3189 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-3189?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Worldmail Imap Server.