cvelist/2006/5xxx/CVE-2006-5487.json

{
    "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2006-5487",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "n/a",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "n/a"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "n/a"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Directory traversal vulnerability in Marshal MailMarshal SMTP 5.x, 6.x, and 2006, and MailMarshal for Exchange 5.x, allows remote attackers to write arbitrary files via \"..\" sequences in filenames in an ARJ compressed archive."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "n/a"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "1857",
                "refsource": "SREASON",
                "url": "http://securityreason.com/securityalert/1857"
            },
            {
                "name": "mailmarshal-arj-code-execution(30188)",
                "refsource": "XF",
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30188"
            },
            {
                "name": "22806",
                "refsource": "SECUNIA",
                "url": "http://secunia.com/advisories/22806"
            },
            {
                "name": "20999",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/20999"
            },
            {
                "name": "1017209",
                "refsource": "SECTRACK",
                "url": "http://securitytracker.com/id?1017209"
            },
            {
                "name": "20061110 ZDI-06-039: Marshal MailMarshal ARJ Extraction Directory Traversal Vulnerability",
                "refsource": "BUGTRAQ",
                "url": "http://www.securityfocus.com/archive/1/451143/100/0/threaded"
            },
            {
                "name": "ADV-2006-4457",
                "refsource": "VUPEN",
                "url": "http://www.vupen.com/english/advisories/2006/4457"
            },
            {
                "name": "http://www.marshal.com/kb/article.aspx?id=11450",
                "refsource": "CONFIRM",
                "url": "http://www.marshal.com/kb/article.aspx?id=11450"
            },
            {
                "name": "http://www.zerodayinitiative.com/advisories/ZDI-06-039.html",
                "refsource": "MISC",
                "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-039.html"
            }
        ]
    }
}
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 00:28:32 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "cve@mitre.org",`
			`"ID": "CVE-2006-5487",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "n/a",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "n/a"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "n/a"`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 00:28:32 +00:00			`"lang": "eng",`
			`"value": "Directory traversal vulnerability in Marshal MailMarshal SMTP 5.x, 6.x, and 2006, and MailMarshal for Exchange 5.x, allows remote attackers to write arbitrary files via \"..\" sequences in filenames in an ARJ compressed archive."`
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`}`
"-Synchronized-Data." 2019-03-18 00:28:32 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "n/a"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "1857",`
			`"refsource": "SREASON",`
			`"url": "http://securityreason.com/securityalert/1857"`
			`},`
			`{`
			`"name": "mailmarshal-arj-code-execution(30188)",`
			`"refsource": "XF",`
			`"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30188"`
			`},`
			`{`
			`"name": "22806",`
			`"refsource": "SECUNIA",`
			`"url": "http://secunia.com/advisories/22806"`
			`},`
			`{`
			`"name": "20999",`
			`"refsource": "BID",`
			`"url": "http://www.securityfocus.com/bid/20999"`
			`},`
			`{`
			`"name": "1017209",`
			`"refsource": "SECTRACK",`
			`"url": "http://securitytracker.com/id?1017209"`
			`},`
			`{`
			`"name": "20061110 ZDI-06-039: Marshal MailMarshal ARJ Extraction Directory Traversal Vulnerability",`
			`"refsource": "BUGTRAQ",`
			`"url": "http://www.securityfocus.com/archive/1/451143/100/0/threaded"`
			`},`
			`{`
			`"name": "ADV-2006-4457",`
			`"refsource": "VUPEN",`
			`"url": "http://www.vupen.com/english/advisories/2006/4457"`
			`},`
			`{`
			`"name": "http://www.marshal.com/kb/article.aspx?id=11450",`
			`"refsource": "CONFIRM",`
			`"url": "http://www.marshal.com/kb/article.aspx?id=11450"`
			`},`
			`{`
			`"name": "http://www.zerodayinitiative.com/advisories/ZDI-06-039.html",`
			`"refsource": "MISC",`
			`"url": "http://www.zerodayinitiative.com/advisories/ZDI-06-039.html"`
			`}`
			`]`
			`}`
			`}`