Unrated severityNVD Advisory· Published May 18, 2005· Updated Apr 16, 2026

CVE-2005-1657

Description

Multiple directory traversal vulnerabilities in Mercur Messaging 2005 SP2 allow remote attackers to perform unauthorized file operations via the Folder.Id parameter to (1) deletefolder.ctml, (2) deletemessage.ctml, (3) origmessage.ctml, or (4) readmessage.ctml, the Message.Id parameter to editmessage.ctml, or the (5) Message.Command parameter to messages.ctml.

Affected products

Mercur/Mercur Messaging
cpe:2.3:a:mercur:mercur_messaging:2005_sp2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/15234nvd
www.osvdb.org/16220nvd
www.osvdb.org/16221nvd
www.osvdb.org/16222nvd
www.osvdb.org/16223nvd
www.osvdb.org/16224nvd
www.osvdb.org/16225nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000