Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-pqr8-xhq6-rx8f

Опубликовано: 01 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Directory traversal vulnerability in X-Diesel Unreal Commander 0.92 build 565 and 573 allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder.

Directory traversal vulnerability in X-Diesel Unreal Commander 0.92 build 565 and 573 allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder.

Ссылки

EPSS

Процентиль: 90%
0.05379
Низкий

CVE ID

CVE-2007-4843

Дефекты

CWE-22

Связанные уязвимости

nvd логотип

CVE-2007-4843

nvd
больше 18 лет назад

Directory traversal vulnerability in X-Diesel Unreal Commander 0.92 build 565 and 573 allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder.

EPSS

Процентиль: 90%
0.05379
Низкий

CVE ID

CVE-2007-4843

Дефекты

CWE-22