CVE-2006-2917

Name of the Vulnerable Software and Affected Versions WinGate versions 6.1.2.1094 through 6.1.3.1096 WinGate versions prior to 6.1.4 Build 1099

Description The issue allows remote authenticated users to perform unauthorized operations, such as reading email of other users or modifying directories, by exploiting a directory traversal vulnerability in the IMAP server. This can be achieved via various IMAP commands, including CREATE, SELECT, DELETE, RENAME, COPY, APPEND, and LIST.

Recommendations For WinGate versions 6.1.2.1094 through 6.1.3.1096, update to version 6.1.4 Build 1099 or later. For WinGate versions prior to 6.1.4 Build 1099, update to version 6.1.4 Build 1099 or later.