CVE-2005-4557

EXPLOITED

IceWarp Web Mail <5.5.1 - Path Traversal

Title source: llm

Exploitation Summary

CVE-2005-4557 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Tan Chew Keong.

AI-analyzed exploit summary The provided text describes an input-validation vulnerability in IceWarp Universal WebMail, allowing arbitrary file inclusion and local file disclosure. It includes a proof-of-concept URL demonstrating the exploit but lacks executable code.

Description

dir/include.html in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, allows remote attackers to include arbitrary local files via a null byte (%00) in the lang parameter, possibly due to a directory traversal vulnerability.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Tan Chew Keong · textwebappsphp

https://www.exploit-db.com/exploits/26981

View Code ZIP pw:eip

The provided text describes an input-validation vulnerability in IceWarp Universal WebMail, allowing arbitrary file inclusion and local file disclosure. It includes a proof-of-concept URL demonstrating the exploit but lacks executable code.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Merak Mail Server 8.3.0.r, VisNetic MailServer 8.3.0 build 1

No auth needed

Prerequisites: Network access to the vulnerable webmail interface

MITRE ATT&CK