Lucene search
FreeBSDF92E1BBC-5E18-11D9-839A-0050DA134090HistoryDec 15, 2004 - 12:00 a.m.
tnftp -- mget does not check for directory escapes
2004-12-1500:00:00
vuxml.freebsd.org
10
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
0.001
Percentile
49.9%
When downloading a batch of files from an FTP server the
mget command does not check for directory escapes. A
specially crafted file on the FTP server could then
potentially overwrite an existing file of the user.
Related
openvas
openvas
Gentoo Security Advisory GLSA 200501-24 (tnftp)
2008-09-24 00:00:00
FreeBSD Ports: tnftp
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200501-24 (tnftp)
2008-09-24 00:00:00
debiancve
debiancve
CVE-2004-1294
2005-01-10 05:00:00
nessus
nessus
GLSA-200501-24 : tnftp: Arbitrary file overwriting
2005-02-14 00:00:00
ubuntucve
ubuntucve
CVE-2004-1294
2005-01-10 00:00:00
nvd
nvd
CVE-2004-1294
2005-01-10 05:00:00
cvelist
cvelist
CVE-2004-1294
2004-12-22 05:00:00
gentoo
gentoo
tnftp: Arbitrary file overwriting
2005-01-14 00:00:00
cve
cve
CVE-2004-1294
2005-01-10 05:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
0.001
Percentile
49.9%
Related for F92E1BBC-5E18-11D9-839A-0050DA134090