Описание
Directory traversal vulnerability in Fastream NETFile FTP/Web Server 6.7.2.1085 and earlier allows remote attackers to create or delete arbitrary files via .. (dot dot) and // (double slash) sequences in the filename parameter.
Ссылки
- URL Repurposed
- ExploitPatchVendor Advisory
- URL Repurposed
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:fastream:netfile_ftp_web_server:6.5.1.980:*:*:*:*:*:*:*
cpe:2.3:a:fastream:netfile_ftp_web_server:6.5.1.981:*:*:*:*:*:*:*
cpe:2.3:a:fastream:netfile_ftp_web_server:6.7.2.1085:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04403
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Directory traversal vulnerability in Fastream NETFile FTP/Web Server 6.7.2.1085 and earlier allows remote attackers to create or delete arbitrary files via .. (dot dot) and // (double slash) sequences in the filename parameter.
EPSS
Процентиль: 89%
0.04403
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other