CVE-2006-4491

Directory traversal vulnerability in Cybozu Collaborex, AG before 1.2(1.5), AG Pocket before 5.2(0.8), Mailwise before 3.0(0.3), and Garoon 1 before 1.5(4.1) allows remote authenticated users to read arbitrary files via unspecified vectors.

Published: Sep 1, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-4491
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
cybozu / garoon_1	1.5(4.0)	1.5(4.0).x
cybozu / cybozu_pocket	5.2(0.7)	5.2(0.7).x
cybozu / cybozu_ag	1.2(1.4)	1.2(1.4).x
cybozu / mailwise	3.0(0.2)	3.0(0.2).x
cybozu / collaborex	-	-

http://cybozu.co.jp/products/dl/notice_060825/
http://jvn.jp/jp/JVN%2390420168/index.html
http://secunia.com/advisories/21638
http://secunia.com/advisories/21656
http://securitytracker.com/id?1016759
http://www.osvdb.org/28262

Vulnerability Database

289,599

CVE-2006-4491