QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2006-5902

Back to search

CVE-2006-5902

Published: Nov 15, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

viksoe GMail Drive shell extension allows remote attackers to perform virtual filesystem actions via e-mail messages with certain subject lines, as demonstrated by (1) a GMAILFS: [13;a;1] message with a new filename and a file attachment, which injects a new file into the filesystem; (2) a GMAILFS: [13;a;1] message with an existing filename and a file attachment, which overwrites existing file content; and (3) a GMAILFS: [14;a;1] message, which creates a folder.

VendorProductVersions

n/a

n/a

affected
n/a

References

20061103 Mail Drives Security Considerations
mailing-list
x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now