RSS   Vulnerabilities for 'Crushftp ftp server'   RSS

2001-08-22
 
CVE-2001-0582

CWE-Other
 

 
Ben Spink CrushFTP FTP Server 2.1.6 and earlier allows a local attacker to access arbitrary files via a '..' (dot dot) attack, or variations, in (1) GET, (2) CD, (3) NLST, (4) SIZE, (5) RETR.

 


Copyright 2024, cxsecurity.com

 

Back to Top