CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2003-1299

Directory traversal vulnerability in Baby FTP Server 1.2, and possibly other versions before May 31, 2003 allows remote authenticated users to list arbitrary directories and possibly read files via "..." (triple dot) manipulations to the CWD command.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 67.0%

CVSS Severity

CVSS v2 Score 4.0

References

http://packetstormsecurity.org/0305-exploits/baby.txt
http://www.osvdb.org/24538
http://www.pablosoftwaresolutions.com/html/baby_ftp_server.html
http://www.securityfocus.com/bid/7749
http://packetstormsecurity.org/0305-exploits/baby.txt
http://www.osvdb.org/24538
http://www.pablosoftwaresolutions.com/html/baby_ftp_server.html
http://www.securityfocus.com/bid/7749

Products affected by CVE-2003-1299

Pablo Software Solutions » Baby Ftp Server » Version: 1.2

cpe:2.3:a:pablo_software_solutions:baby_ftp_server:1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-1299

Products

Pricing

Contact Us