Lucene search
MitreCVE-2008-2795HistoryJun 20, 2008 - 11:48 a.m.
CVE-2008-2795
2008-06-2011:48:00
CWE-22
mitre
web.nvd.nist.gov
22
cve-2008-2795
idm computer solutions inc
ultraedit
ftp
sftp
vulnerability
directory traversal
remote code execution
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
47.2%
Directory traversal vulnerability in the FTP and SFTP clients in IDM Computer Solutions Inc UltraEdit 14.00b allows remote FTP servers to create or overwrite arbitrary files via a … (dot dot) or a …\ (dot dot backslash) in a response to a LIST command.
Affected configurations
Node
idm_computer_solutions_incultraeditMatch14.00b
| Vendor | Product | Version | CPE |
|---|---|---|---|
| idm_computer_solutions_inc | ultraedit | 14.00b | cpe:2.3:a:idm_computer_solutions_inc:ultraedit:14.00b:*:*:*:*:*:*:* |
Related
kaspersky
kaspersky
KLA10375 WLF vulnerability in UltraEdit
2008-03-20 00:00:00
cvelist
cvelist
CVE-2008-2795
2008-06-20 10:00:00
nvd
nvd
CVE-2008-2795
2008-06-20 11:48:00
prion
prion
Directory traversal
2008-06-20 11:48:00
exploitdb
exploitdb
UltraEdit 14.00b - FTP/SFTP 'LIST' Directory Traversal
2008-06-17 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
47.2%
Related for CVE-2008-2795