43 matches found
PT-2001-2252 · Eftp · Eftp
Name of the Vulnerable Software and Affected Versions: EFTP version 2.0.7.337 Description: A directory traversal issue allows remote authenticated users to reveal directory contents by using a .. dot dot in the LIST, QUOTE SIZE, and QUOTE MDTM commands. Recommendations: For EFTP version 2.0.7.337...
EFTP Server 2.0.7.337 - Directory Existence / File Existence
source: https://www.securityfocus.com/bid/3333/info A user can confirm the existence and location of files and directory structure information, by submitting a 'size' or 'mdtm' command of a file. If the command is carried out by the vulnerable service, the attacker can confirm the location of the...
CVE-2001-0263
Gene6 G6 FTP Server 2.0 aka BPFTP Server 2.10 allows attackers to read file attributes outside of the web root via the 1 SIZE and 2 MDTM commands when the "show relative paths" option is not enabled...