Vulnerability Details CVE-2001-0450
Directory traversal vulnerability in Transsoft FTP Broker before 5.5 allows attackers to (1) delete arbitrary files via DELETE, or (2) list arbitrary directories via LIST, via a .. (dot dot) in the file name.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 80.5%
CVSS Severity
CVSS v2 Score 6.4
References
- http://archives.neohapsis.com/archives/bugtraq/2001-02/0533.html
- http://www.ftp-broker.com/cgibin/Pageexe.exe?H=4143&P=0&C=0
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6189
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6190
- http://archives.neohapsis.com/archives/bugtraq/2001-02/0533.html
- http://www.ftp-broker.com/cgibin/Pageexe.exe?H=4143&P=0&C=0
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6189
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6190
Products affected by CVE-2001-0450
-
cpe:2.3:a:transsoft:broker_ftp_server:*