Lucene search

[email protected]CVE-2010-3096

HistoryAug 20, 2010 - 8:00 p.m.

CVE-2010-3096

2010-08-2020:00:03

CWE-22

[email protected]

web.nvd.nist.gov

cve-2010-3096

directory traversal

softx ftp client

remote ftp servers

arbitrary files

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.1 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

65.5%

JSON

Directory traversal vulnerability in SoftX FTP Client 3.3 and possibly earlier allows remote FTP servers to write arbitrary files via "…" (dot dot backslash) sequences in a filename.

Affected configurations

NVD

Node

softxftp_clientMatch3.3

CPENameOperatorVersion
softx:ftp_clientsoftx ftp clienteq3.3

CPE	Name	Operator	Version
softx:ftp_client	softx ftp client	eq	3.3

References

secunia.com/advisories/40973

www.htbridge.ch/advisory/directory_traversal_in_softx_ftp_client.html

www.securityfocus.com/archive/1/513085/100/0/threaded

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.1 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

65.5%

JSON

Related for CVE-2010-3096

prion1 nvd1 htbridge1 cvelist1