Intrusion Prevention

Cybozu.Share360.Arbitrary.File.Retrieval

Description

It indicates a possible exploit of a directory traversal vulnerability in Cybozu.

Affected Products

Cybozu Share360 2.5 Build 0.2
Cybozu Office 6.5
Cybozu Garoon 1
Cybozu AG Pocket 0
Cybozu AG Mailwise 0
Cybozu AG 0

Impact

System compromise.

Recommended Actions

For Cybozu Office:
Upgrade to the latest version (6.6 Build 1.3 or later), available from the Cybozu Web site.
http://office.cybozu.co.jp/cb6/download/
For Cybozu Share 360:
Upgrade to the latest version (2.5 Build 0.3 or later), available from the Cybozu Web site.
http://cybozu.com/try/guide.cbml

CVE References

CVE-2006-4490