CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0877

Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the (1) LIST (ls) or (2) GET commands.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.025

EPSS Ranking 84.7%

CVSS Severity

CVSS v2 Score 5.0

References

http://archives.neohapsis.com/archives/bugtraq/2002-05/0282.html
http://www.iss.net/security_center/static/9224.php
http://www.securityfocus.com/bid/4896
http://archives.neohapsis.com/archives/bugtraq/2002-05/0282.html
http://www.iss.net/security_center/static/9224.php
http://www.securityfocus.com/bid/4896

Products affected by CVE-2002-0877

Evolvable Corporation » Shambala Server » Version: 4.5

cpe:2.3:a:evolvable_corporation:shambala_server:4.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0877

Products

Pricing

Contact Us