Lucene search
HistoryJun 20, 2008 - 11:48 a.m.
CVE-2008-2795
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
47.2%
Directory traversal vulnerability in the FTP and SFTP clients in IDM Computer Solutions Inc UltraEdit 14.00b allows remote FTP servers to create or overwrite arbitrary files via a … (dot dot) or a …\ (dot dot backslash) in a response to a LIST command.
Affected configurations
Node
idm_computer_solutions_incultraeditMatch14.00b
| Vendor | Product | Version | CPE |
|---|---|---|---|
| idm_computer_solutions_inc | ultraedit | 14.00b | cpe:2.3:a:idm_computer_solutions_inc:ultraedit:14.00b:*:*:*:*:*:*:* |
Related
kaspersky
kaspersky
KLA10375 WLF vulnerability in UltraEdit
2008-03-20 00:00:00
cvelist
cvelist
CVE-2008-2795
2008-06-20 10:00:00
cve
cve
CVE-2008-2795
2008-06-20 11:48:00
prion
prion
Directory traversal
2008-06-20 11:48:00
exploitdb
exploitdb
UltraEdit 14.00b - FTP/SFTP 'LIST' Directory Traversal
2008-06-17 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
47.2%
Related for NVD:CVE-2008-2795