Lucene search

[email protected]CVE-2008-2822

HistoryJun 23, 2008 - 5:41 p.m.

CVE-2008-2822

2008-06-2317:41:00

CWE-22

[email protected]

web.nvd.nist.gov

cve-2008-2822

directory traversal

ftp client

3d-ftp client 8.01

nvd

7.1 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

54.9%

JSON

Multiple directory traversal vulnerabilities in the FTP client in 3D-FTP Client 8.01 (8.0 build 1) allow remote FTP servers to create or overwrite arbitrary files via a … (dot dot) in a response to a (1) LIST or (2) MLSD command.

CPENameOperatorVersion
3dftp:3d-ftp_client3dftp 3d-ftp clienteq8.01

CPE	Name	Operator	Version
3dftp:3d-ftp_client	3dftp 3d-ftp client	eq	8.01

References

secunia.com/advisories/30651

vuln.sg/3dftp801-en.html

www.3dftp.com/3dftp_versions.htm

www.securityfocus.com/bid/29749

www.vupen.com/english/advisories/2008/1853/references

exchange.xforce.ibmcloud.com/vulnerabilities/43095

7.1 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

54.9%

JSON

Related for CVE-2008-2822

nessus1 prion1 cvelist1