2 matches found
CVE-2001-0452
CVE-2001-0452 affects the BRS WebWeaver FTP server prior to 0.64 Beta. The vulnerability allows a remote attacker to obtain the real pathname of the server by issuing a sequence: first a problematic CD * command, followed by an ls. The available documents confirm the affected product and the exac...
CVE-2000-0876
Vulnerability summary: WFTPD and WFTPD Pro 2.41 RC12 expose the server’s full pathname to remote attackers by issuing a "%C" command, which triggers an error message revealing the path. Affected products/components: WFTPD, WFTPD Pro 2.41 RC12. Root cause/technique: error-path disclosure in server...