Vulnerability Details CVE-2001-0263
Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows attackers to read file attributes outside of the web root via the (1) SIZE and (2) MDTM commands when the "show relative paths" option is not enabled.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.032
EPSS Ranking 86.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.atstake.com/research/advisories/2001/a040301-1.txt
- http://www.securityfocus.com/bid/2537
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6330
- http://www.atstake.com/research/advisories/2001/a040301-1.txt
- http://www.securityfocus.com/bid/2537
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6330
Products affected by CVE-2001-0263
-
cpe:2.3:a:gene6:g6_ftp_server:2.0