Lucene search
HistoryNov 19, 2008 - 6:11 p.m.
CVE-2008-5175
cve-2008-5175
directory traversal
ftp client
aceftp
remote
arbitrary files
list command
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
51.2%
Directory traversal vulnerability in the FTP client in AceFTP Freeware 3.80.3 and AceFTP Pro 3.80.3 allows remote FTP servers to create or overwrite arbitrary files via a … (dot dot) in a response to a LIST command, a related issue to CVE-2002-1345.
Affected configurations
Node
visicommediaaceftpMatch3.80.3_nil_freeware
ORvisicommediaaceftpMatch3.80.3_nil_pro
| CPE | Name | Operator | Version |
|---|---|---|---|
| visicommedia:aceftp | visicommedia aceftp | eq | 3.80.3 |
Related
prion
prion
Directory traversal
2008-11-19 18:11:00
Directory traversal
2008-06-13 19:41:00
Directory traversal
2008-06-03 14:32:00
cvelist
cvelist
nvd
nvd
openvas
openvas
AceFTP LIST Command Directory Traversal Vulnerability
2008-12-01 00:00:00
AceFTP LIST Command Directory Traversal Vulnerability
2008-12-01 00:00:00
cve
cve
cert
cert
Multiple FTP clients contain directory traversal vulnerabilities
2002-12-10 00:00:00
securityvulns
securityvulns
Directory Traversal Vulnerabilities in FTP Clients
2002-12-11 00:00:00
[NEWS] Directory Traversal Vulnerabilities in FTP Clients
2002-12-11 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
51.2%
Related for CVE-2008-5175