CVE-2010-2426

Sažetak

Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read arbitrary files, determine file size, via "..//" sequences in the xcrc command.

Reference

http://osvdb.org/65533
http://secunia.com/advisories/40237
http://www.securityfocus.com/archive/1/511839/100/0/threaded
http://www.securityfocus.com/bid/40949
https://exchange.xforce.ibmcloud.com/vulnerabilities/59492

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

10-10-2018 - 19:59

Objavljeno

24-06-2010 - 12:17