CVE-2006-1383

Sažetak

Directory traversal vulnerability in Baby FTP Server (BabyFTP) 1.24 allows remote authenticated users to determine existence of files outside the intended document root via unspecified manipulations, which generate different error messages depending on whether a file exists or not.

Reference

http://secunia.com/advisories/19338
http://www.osvdb.org/24057
http://www.securityfocus.com/bid/17205
http://www.vupen.com/english/advisories/2006/1069
https://exchange.xforce.ibmcloud.com/vulnerabilities/25413

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

20-07-2017 - 01:30

Objavljeno

24-03-2006 - 11:02