CVE-2006-0173

Name of the Vulnerable Software and Affected Versions Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) versions 5.21 and earlier

Description The issue allows remote attackers to misrepresent the type and name of a file by modifying the doc ext and id parameters. This could potentially trick a user into downloading dangerous or unexpected content.

Recommendations For versions 5.21 and earlier, consider restricting access to the parameters doc ext and id to minimize the risk of exploitation. As a temporary workaround, avoid using these parameters in sensitive operations until a fix is available. At the moment, there is no information about a newer version that contains a fix for this issue.