Vulnerability Details CVE-2001-1295
Directory traversal vulnerability in Cerberus FTP Server 1.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the CD command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.016
EPSS Ranking 81.0%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.greenepa.net/~averett/cerberus-releasenotes.htm#ReleaseNotes
- http://www.iss.net/security_center/static/7004.php
- http://www.securiteam.com/windowsntfocus/5SP0M0055W.html
- http://www.greenepa.net/~averett/cerberus-releasenotes.htm#ReleaseNotes
- http://www.iss.net/security_center/static/7004.php
- http://www.securiteam.com/windowsntfocus/5SP0M0055W.html
Products affected by CVE-2001-1295
-
cpe:2.3:a:grant_averett:cerberus_ftp_server:*