CVE-2006-4013

Currently unrated

Key Information:

Vendor: Symantec
Status: Brightmail Antispam
Vendor: CVE Published:; 7 August 2006

Summary

Multiple directory traversal vulnerabilities in Symantec Brightmail AntiSpam (SBAS) before 6.0.4, when the Control Center is allowed to connect from any computer, allow remote attackers to read and overwrite certain files via directory traversal sequences in (1) DATABLOB-GET and (2) DATABLOB-SAVE requests.

References

http://securitytracker.com/id?1016600

vdb-entryx_refsource_SECTRACK

http://www.osvdb.org/27590

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/19182

vdb-entryx_refsource_BID

EPSS Score

22% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 7, 2006
Vulnerability Reserved
Aug 7, 2006