CVE-2006-6131

Kerio WebSTAR <5.4.2 - Privilege Escalation

Title source: llm

Description

Untrusted search path vulnerability in (1) WSAdminServer and (2) WSWebServer in Kerio WebSTAR (4D WebSTAR Server Suite) 5.4.2 and earlier allows local users with webstar privileges to gain root privileges via a malicious libucache.dylib helper library in the current working directory.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Kevin Finisterre · perllocalosx

https://www.exploit-db.com/exploits/2788

View Code ZIP pw:eip

References (9)

[Exploit] http://www.securityfocus.com/bid/21123

[Exploit] http://securitytracker.com/id?1017239

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/30308

[Various Sources] http://www.digitalmunition.com/DMA%5B2006-1115a%5D.txt

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/451832/100/200/threaded

[Exploit] http://www.osvdb.org/30450

[Third Party Advisory] http://securityreason.com/securityalert/1921

[Third Party Advisory] http://www.vupen.com/english/advisories/2006/4539

[Exploit, Vendor Advisory] http://secunia.com/advisories/22906

Scores

EPSS 0.0019

EPSS Percentile 40.9%

Details

Status published

Products (15)

kerio/webstar 4.0

kerio/webstar 5.1.2

kerio/webstar 5.1.3

kerio/webstar 5.2

kerio/webstar 5.2.1

kerio/webstar 5.2.2

kerio/webstar 5.2.3

kerio/webstar 5.2.4

kerio/webstar 5.3

kerio/webstar 5.3.1

... and 5 more

Published Nov 28, 2006

Tracked Since Feb 18, 2026