CVE-2004-2769

Sažetak

Cerberus FTP Server before 4.0.3.0 allows remote authenticated users to list hidden files, even when the "Display hidden files" option is enabled, via the (1) MLSD or (2) MLST commands.

Reference

http://secunia.com/advisories/40370
http://www.cerberusftp.com/phpBB3/viewtopic.php?f=4&t=644
http://www.cerberusftp.com/releasenotes.html
http://www.securityfocus.com/bid/41285

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

06-07-2010 - 04:00

Objavljeno

02-07-2010 - 20:30