Vulnerability Details CVE-2005-1484
Directory traversal vulnerability in Golden FTP server pro 2.52 allows remote attackers to read arbitrary files via a "\.." (backward slash dot dot) with a leading '"' (double quote) in the GET command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 46.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=111530871716145&w=2
- http://secunia.com/advisories/15175
- http://www.securityfocus.com/bid/13479
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20668
- http://marc.info/?l=bugtraq&m=111530871716145&w=2
- http://secunia.com/advisories/15175
- http://www.securityfocus.com/bid/13479
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20668
Products affected by CVE-2005-1484
-
cpe:2.3:a:kmint21_software:golden_ftp_server:1.00b
-
cpe:2.3:a:kmint21_software:golden_ftp_server:1.20b
-
cpe:2.3:a:kmint21_software:golden_ftp_server:1.30b
-
cpe:2.3:a:kmint21_software:golden_ftp_server:1.31b
-
cpe:2.3:a:kmint21_software:golden_ftp_server:1.92
-
cpe:2.3:a:kmint21_software:golden_ftp_server:2.0.2b
-
cpe:2.3:a:kmint21_software:golden_ftp_server:2.0.5b
-
cpe:2.3:a:kmint21_software:golden_ftp_server:2.10
-
cpe:2.3:a:kmint21_software:golden_ftp_server:2.16
-
cpe:2.3:a:kmint21_software:golden_ftp_server:2.52