Vulnerability Details CVE-2001-1109
Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal directory contents via a .. (dot dot) in the (1) LIST, (2) QUOTE SIZE, and (3) QUOTE MDTM commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.055
EPSS Ranking 89.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.eftp.org/releasehistory.html
- http://www.securityfocus.com/archive/1/213647
- http://www.securityfocus.com/bid/3331
- http://www.securityfocus.com/bid/3333
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7113
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7114
- http://www.eftp.org/releasehistory.html
- http://www.securityfocus.com/archive/1/213647
- http://www.securityfocus.com/bid/3331
- http://www.securityfocus.com/bid/3333
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7113
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7114
Products affected by CVE-2001-1109
-
cpe:2.3:a:khamil_landross_and_zack_jones:eftp:2.0.7.337