3 matches found
CVE-2019-7227
In the ABB IDAL FTP server, an authenticated attacker can traverse to arbitrary directories on the hard disk with "CWD ../" and then use the FTP server functionality to download and upload files. An unauthenticated attacker can take advantage of the hardcoded or default credential pair exor/exor ...
CVE-2019-7227
In the ABB IDAL FTP server, an authenticated attacker can traverse to arbitrary directories on the hard disk with "CWD ../" and then use the FTP server functionality to download and upload files. An unauthenticated attacker can take advantage of the hardcoded or default credential pair exor/exor ...
CVE-2019-7227
The CVE-2019-7227 issue affects ABB IDAL FTP server (PB610 Panel Builder 600 family). The vulnerability is a path traversal in the IDAL FTP server: an authenticated attacker can use CWD ../ to traverse directories and download/upload files; an unauthenticated attacker can exploit hardcoded/defaul...