RSS   Vulnerabilities for 'Ultraedit'   RSS

2008-06-20
 
CVE-2008-2795

CWE-22
 

 
Directory traversal vulnerability in the FTP and SFTP clients in IDM Computer Solutions Inc UltraEdit 14.00b allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) or a ..\ (dot dot backslash) in a response to a LIST command.

 


Copyright 2024, cxsecurity.com

 

Back to Top