Lucene search
HistoryNov 19, 2008 - 6:11 p.m.
CVE-2008-5175
cve-2008-5175
directory traversal
ftp client
aceftp
remote
arbitrary files
list command
6.4 Medium
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
51.2%
Directory traversal vulnerability in the FTP client in AceFTP Freeware 3.80.3 and AceFTP Pro 3.80.3 allows remote FTP servers to create or overwrite arbitrary files via a … (dot dot) in a response to a LIST command, a related issue to CVE-2002-1345.
Affected configurations
Node
visicommediaaceftpMatch3.80.3_nil_freeware
ORvisicommediaaceftpMatch3.80.3_nil_pro
| CPE | Name | Operator | Version |
|---|---|---|---|
| visicommedia:aceftp | visicommedia aceftp | eq | 3.80.3 |
Related
prion
prion
Directory traversal
2008-11-19 18:11:00
Directory traversal
2008-06-03 14:32:00
Directory traversal
2008-06-13 19:41:00
cvelist
cvelist
nvd
nvd
openvas
openvas
AceFTP LIST Command Directory Traversal Vulnerability
2008-12-01 00:00:00
AceFTP LIST Command Directory Traversal Vulnerability
2008-12-01 00:00:00
cert
cert
Multiple FTP clients contain directory traversal vulnerabilities
2002-12-10 00:00:00
cve
cve
securityvulns
securityvulns
[NEWS] Directory Traversal Vulnerabilities in FTP Clients
2002-12-11 00:00:00
Directory Traversal Vulnerabilities in FTP Clients
2002-12-11 00:00:00
6.4 Medium
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
51.2%
Related for CVE-2008-5175