Lucene search

K
cve[email protected]CVE-2015-3306
HistoryMay 18, 2015 - 3:59 p.m.

CVE-2015-3306

2015-05-1815:59:00
CWE-284
web.nvd.nist.gov
2115
4
20
proftpd
mod_copy
remote attack
file read
file write
cve-2015-3306

9.2 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.972 High

EPSS

Percentile

99.8%

The mod_copy module in ProFTPD 1.3.5 allows remote attackers to read and write to arbitrary files via the site cpfr and site cpto commands.

CPENameOperatorVersion
proftpd:proftpdproftpdeq1.3.5

References

Social References

More

9.2 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.972 High

EPSS

Percentile

99.8%