VYPR
Unrated severityNVD Advisory· Published Oct 16, 2006· Updated Jun 16, 2026

CVE-2006-5210

CVE-2006-5210

Description

Directory traversal vulnerability in IronWebMail before 6.1.1 HotFix-17 allows remote attackers to read arbitrary files via a GET request to the IM_FILE identifier with double-url-encoded "../" sequences ("%252e%252e/").

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:ciphertrust:ironmail:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:ciphertrust:ironmail:*:*:*:*:*:*:*:*range: <=6.1.1
    • cpe:2.3:a:ciphertrust:ironmail:4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ciphertrust:ironmail:4.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ciphertrust:ironmail:5.0.1:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.