CVE-2001-1109

Опубликовано: 12 сент. 2001

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal directory contents via a .. (dot dot) in the (1) LIST, (2) QUOTE SIZE, and (3) QUOTE MDTM commands.

Ссылки

http://www.eftp.org/releasehistory.html
URL Repurposed
http://www.securityfocus.com/archive/1/213647
Vendor Advisory
http://www.securityfocus.com/bid/3331
Vendor Advisory
http://www.securityfocus.com/bid/3333
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7113
https://exchange.xforce.ibmcloud.com/vulnerabilities/7114
http://www.eftp.org/releasehistory.html
URL Repurposed
http://www.securityfocus.com/archive/1/213647
Vendor Advisory
http://www.securityfocus.com/bid/3331
Vendor Advisory
http://www.securityfocus.com/bid/3333
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7113
https://exchange.xforce.ibmcloud.com/vulnerabilities/7114

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:khamil_landross_and_zack_jones:eftp:2.0.7.337:*:*:*:*:*:*:*

EPSS

Процентиль: 90%

0.05522

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-6pxh-jrxq-q8j6

github

больше 3 лет назад