CVE-2005-3189

Qualcomm WorldMail IMAP Server - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-3189. PoCs published by FistFuXXer.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in Qualcomm Worldmail IMAP server, allowing unauthorized access to other users' mailboxes. The PoC shows how an authenticated attacker can traverse directories to access the administrator's inbox.

Description

Directory traversal vulnerability in Qualcomm WorldMail IMAP Server allows remote attackers to read arbitrary email messages via ".." sequences in the SELECT command.

Exploits (1)

exploitdb WORKING POC VERIFIED

by FistFuXXer · textremotelinux

https://www.exploit-db.com/exploits/26536

View Code ZIP pw:eip

This exploit demonstrates a directory traversal vulnerability in Qualcomm Worldmail IMAP server, allowing unauthorized access to other users' mailboxes. The PoC shows how an authenticated attacker can traverse directories to access the administrator's inbox.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Qualcomm Worldmail Server 3.0 (and possibly other versions)

Auth required

Prerequisites: Valid IMAP credentials · Network access to the IMAP server

MITRE ATT&CK