2 matches found
CVE-2003-1380
CVE-2003-1380 describes a directory traversal vulnerability in BisonFTP Server 4 release 2 that allows remote attackers to list directories above the root with commands like 'ls @../' or 'mget @../FILE' . The root cause is improper handling of path traversal in the FTP server, enabling access to ...
CVE-2003-1380
Directory traversal vulnerability in BisonFTP Server 4 release 2 allows remote attackers to 1 list directories above the root via an 'ls @../' command, or 2 list files above the root via a "mget @../FILE" command...