VYPR
Unrated severityNVD Advisory· Published Jun 22, 2006· Updated Jun 16, 2026

CVE-2006-3159

CVE-2006-3159

Description

pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message.

Affected products

3
  • cpe:2.3:a:sun:iplanet_messaging_server:5.2:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:sun:iplanet_messaging_server:5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:sun:one_messaging_server:5.2:*:*:*:*:*:*:*
    • (no CPE)range: = 5.2 HotFix 1.16 (built May 14 2003)

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.