Описание
Directory traversal vulnerability in the FTP client in AceBIT WISE-FTP 4.1.0 and 5.5.8 allows remote FTP servers to create or overwrite arbitrary files via a ..\ (dot dot backslash) in a response to a LIST command, a related issue to CVE-2002-1345.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Patch
- Vendor Advisory
- Vendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:wise-ftp:wise-ftp:4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:wise-ftp:wise-ftp:5.5.8:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.06646
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
почти 4 года назад
Directory traversal vulnerability in the FTP client in AceBIT WISE-FTP 4.1.0 and 5.5.8 allows remote FTP servers to create or overwrite arbitrary files via a ..\ (dot dot backslash) in a response to a LIST command, a related issue to CVE-2002-1345.
EPSS
Процентиль: 91%
0.06646
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-22