Lucene search

[email protected]CVE-2010-2426

HistoryJun 24, 2010 - 12:17 p.m.

CVE-2010-2426

2010-06-2412:17:45

CWE-22

[email protected]

web.nvd.nist.gov

titanftpd

directory traversal

remote authentication

arbitrary files

nvd

cve-2010-2426

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

6.4 Medium

AI Score

Confidence

Low

0.072 Low

EPSS

Percentile

94.1%

JSON

Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read arbitrary files, determine file size, via “…//” sequences in the xcrc command.

Affected configurations

NVD

Node

southrivertechtitan_ftp_serverRange≤8.10.1125

southrivertechtitan_ftp_serverMatch1.0.17

southrivertechtitan_ftp_serverMatch1.0.18

southrivertechtitan_ftp_serverMatch1.0.19

southrivertechtitan_ftp_serverMatch1.0.20

southrivertechtitan_ftp_serverMatch1.0.21

southrivertechtitan_ftp_serverMatch1.0.22

southrivertechtitan_ftp_serverMatch1.0.23

southrivertechtitan_ftp_serverMatch1.0.24

southrivertechtitan_ftp_serverMatch1.0.25

southrivertechtitan_ftp_serverMatch1.0.26

southrivertechtitan_ftp_serverMatch1.0.27

southrivertechtitan_ftp_serverMatch1.0.28

southrivertechtitan_ftp_serverMatch1.0.29

southrivertechtitan_ftp_serverMatch1.0.30

southrivertechtitan_ftp_serverMatch1.0.31

southrivertechtitan_ftp_serverMatch1.1.33

southrivertechtitan_ftp_serverMatch1.11.34

southrivertechtitan_ftp_serverMatch2.0.44beta

southrivertechtitan_ftp_serverMatch2.00.95

southrivertechtitan_ftp_serverMatch2.01.96

southrivertechtitan_ftp_serverMatch2.02.99

southrivertechtitan_ftp_serverMatch2.10.119

southrivertechtitan_ftp_serverMatch2.10.120

southrivertechtitan_ftp_serverMatch2.10.121

southrivertechtitan_ftp_serverMatch2.11.132

southrivertechtitan_ftp_serverMatch2.20.140

southrivertechtitan_ftp_serverMatch2.21.142

southrivertechtitan_ftp_serverMatch2.30.151

southrivertechtitan_ftp_serverMatch2.31.152

southrivertechtitan_ftp_serverMatch2.40.155

southrivertechtitan_ftp_serverMatch3.00.162

southrivertechtitan_ftp_serverMatch3.01.163

southrivertechtitan_ftp_serverMatch3.02.165

southrivertechtitan_ftp_serverMatch3.10.169

southrivertechtitan_ftp_serverMatch3.12.172

southrivertechtitan_ftp_serverMatch3.20.175

southrivertechtitan_ftp_serverMatch3.21.177

southrivertechtitan_ftp_serverMatch3.22.178

southrivertechtitan_ftp_serverMatch3.30.186

southrivertechtitan_ftp_serverMatch4.00.245

southrivertechtitan_ftp_serverMatch4.01.246

southrivertechtitan_ftp_serverMatch4.02.248

southrivertechtitan_ftp_serverMatch4.03.249

southrivertechtitan_ftp_serverMatch4.05.252

southrivertechtitan_ftp_serverMatch4.10.256

southrivertechtitan_ftp_serverMatch4.11.257

southrivertechtitan_ftp_serverMatch4.13.260

southrivertechtitan_ftp_serverMatch4.14.261

southrivertechtitan_ftp_serverMatch4.20.263

southrivertechtitan_ftp_serverMatch4.21.264

southrivertechtitan_ftp_serverMatch4.22.265

southrivertechtitan_ftp_serverMatch4.23.266

southrivertechtitan_ftp_serverMatch4.30.269

southrivertechtitan_ftp_serverMatch4.31.272

southrivertechtitan_ftp_serverMatch5.00.303

southrivertechtitan_ftp_serverMatch5.01.306

southrivertechtitan_ftp_serverMatch5.02.307

southrivertechtitan_ftp_serverMatch5.03.308

southrivertechtitan_ftp_serverMatch5.03.309

southrivertechtitan_ftp_serverMatch5.03.310

southrivertechtitan_ftp_serverMatch5.04.311

southrivertechtitan_ftp_serverMatch5.04.312

southrivertechtitan_ftp_serverMatch5.04.313

southrivertechtitan_ftp_serverMatch5.04.314

southrivertechtitan_ftp_serverMatch5.04.315

southrivertechtitan_ftp_serverMatch5.05.316

southrivertechtitan_ftp_serverMatch5.05.317

southrivertechtitan_ftp_serverMatch5.05.318

southrivertechtitan_ftp_serverMatch5.05.319

southrivertechtitan_ftp_serverMatch5.05.320

southrivertechtitan_ftp_serverMatch5.05.321

southrivertechtitan_ftp_serverMatch5.05.322

southrivertechtitan_ftp_serverMatch5.05.323

southrivertechtitan_ftp_serverMatch5.05.324

southrivertechtitan_ftp_serverMatch5.05.325

southrivertechtitan_ftp_serverMatch5.05.326

southrivertechtitan_ftp_serverMatch5.05.327

southrivertechtitan_ftp_serverMatch5.10.328

southrivertechtitan_ftp_serverMatch5.10.329

southrivertechtitan_ftp_serverMatch5.11.330

southrivertechtitan_ftp_serverMatch5.11.331

southrivertechtitan_ftp_serverMatch5.12.332

southrivertechtitan_ftp_serverMatch5.12.333

southrivertechtitan_ftp_serverMatch5.12.334

southrivertechtitan_ftp_serverMatch5.12.335

southrivertechtitan_ftp_serverMatch5.12.336

southrivertechtitan_ftp_serverMatch5.20.342

southrivertechtitan_ftp_serverMatch5.21.347

southrivertechtitan_ftp_serverMatch5.22.350

southrivertechtitan_ftp_serverMatch5.23.351

southrivertechtitan_ftp_serverMatch5.24.352

southrivertechtitan_ftp_serverMatch5.25.356

southrivertechtitan_ftp_serverMatch5.26.361

southrivertechtitan_ftp_serverMatch5.27.362

southrivertechtitan_ftp_serverMatch5.30.367

southrivertechtitan_ftp_serverMatch5.31.373

southrivertechtitan_ftp_serverMatch5.32.376

southrivertechtitan_ftp_serverMatch5.33.380

southrivertechtitan_ftp_serverMatch5.33.381

southrivertechtitan_ftp_serverMatch5.35.385

southrivertechtitan_ftp_serverMatch5.36.386

southrivertechtitan_ftp_serverMatch5.37.387

southrivertechtitan_ftp_serverMatch5.38.388

southrivertechtitan_ftp_serverMatch5.39.389

southrivertechtitan_ftp_serverMatch6.00.492

southrivertechtitan_ftp_serverMatch6.01.512

southrivertechtitan_ftp_serverMatch6.03.537

southrivertechtitan_ftp_serverMatch6.04.545

southrivertechtitan_ftp_serverMatch6.05.550

southrivertechtitan_ftp_serverMatch6.06.555

southrivertechtitan_ftp_serverMatch6.10.560

southrivertechtitan_ftp_serverMatch6.20.587

southrivertechtitan_ftp_serverMatch6.21.596

southrivertechtitan_ftp_serverMatch6.23.616

southrivertechtitan_ftp_serverMatch6.24.621

southrivertechtitan_ftp_serverMatch6.25.622

southrivertechtitan_ftp_serverMatch6.26.630

southrivertechtitan_ftp_serverMatch7.00

southrivertechtitan_ftp_serverMatch7.01

southrivertechtitan_ftp_serverMatch7.02

southrivertechtitan_ftp_serverMatch7.10

southrivertechtitan_ftp_serverMatch7.12

southrivertechtitan_ftp_serverMatch8.00

southrivertechtitan_ftp_serverMatch8.01

southrivertechtitan_ftp_serverMatch8.10

CPENameOperatorVersion
southrivertech:titan_ftp_serversouthrivertech titan ftp serverle8.10.1125
southrivertech:titan_ftp_serversouthrivertech titan ftp servereq1.0.17
southrivertech:titan_ftp_serversouthrivertech titan ftp servereq1.0.18
southrivertech:titan_ftp_serversouthrivertech titan ftp servereq1.0.19
southrivertech:titan_ftp_serversouthrivertech titan ftp servereq1.0.20
southrivertech:titan_ftp_serversouthrivertech titan ftp servereq1.0.21
southrivertech:titan_ftp_serversouthrivertech titan ftp servereq1.0.22
southrivertech:titan_ftp_serversouthrivertech titan ftp servereq1.0.23
southrivertech:titan_ftp_serversouthrivertech titan ftp servereq1.0.24
southrivertech:titan_ftp_serversouthrivertech titan ftp servereq1.0.25

CPE	Name	Operator	Version
southrivertech:titan_ftp_server	southrivertech titan ftp server	le	8.10.1125
southrivertech:titan_ftp_server	southrivertech titan ftp server	eq	1.0.17
southrivertech:titan_ftp_server	southrivertech titan ftp server	eq	1.0.18
southrivertech:titan_ftp_server	southrivertech titan ftp server	eq	1.0.19
southrivertech:titan_ftp_server	southrivertech titan ftp server	eq	1.0.20
southrivertech:titan_ftp_server	southrivertech titan ftp server	eq	1.0.21
southrivertech:titan_ftp_server	southrivertech titan ftp server	eq	1.0.22
southrivertech:titan_ftp_server	southrivertech titan ftp server	eq	1.0.23
southrivertech:titan_ftp_server	southrivertech titan ftp server	eq	1.0.24
southrivertech:titan_ftp_server	southrivertech titan ftp server	eq	1.0.25

Rows per page:

1-10 of 1261

References

osvdb.org/65533

secunia.com/advisories/40237

www.securityfocus.com/archive/1/511839/100/0/threaded

www.securityfocus.com/bid/40949

exchange.xforce.ibmcloud.com/vulnerabilities/59492

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

6.4 Medium

AI Score

Confidence

Low

0.072 Low

EPSS

Percentile

94.1%

JSON

Related for CVE-2010-2426

cvelist1 prion1 nvd1 openvas2