Vulnerability Details CVE-2001-0697
NetWin SurgeFTP prior to 1.1h allows a remote attacker to cause a denial of service (crash) via an 'ls ..' command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.062
EPSS Ranking 90.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://netwinsite.com/surgeftp/manual/updates.htm
- http://www.secadministrator.com/Articles/Index.cfm?ArticleID=20200
- http://www.securityfocus.com/archive/1/165816
- http://www.securityfocus.com/bid/2442
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6168
- http://netwinsite.com/surgeftp/manual/updates.htm
- http://www.secadministrator.com/Articles/Index.cfm?ArticleID=20200
- http://www.securityfocus.com/archive/1/165816
- http://www.securityfocus.com/bid/2442
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6168