CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-2894

Directory traversal vulnerability in the FTP client in NCH Software Classic FTP 1.02 for Windows allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) in a response to a LIST command, a related issue to CVE-2002-1345.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.023

EPSS Ranking 84.0%

CVSS Severity

CVSS v2 Score 9.3

References

http://secunia.com/advisories/30708
http://vuln.sg/classicftp102-en.html
http://www.securityfocus.com/bid/29846
http://www.vupen.com/english/advisories/2008/1899/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43230
http://secunia.com/advisories/30708
http://vuln.sg/classicftp102-en.html
http://www.securityfocus.com/bid/29846
http://www.vupen.com/english/advisories/2008/1899/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43230

Products affected by CVE-2008-2894

Nch Software » Nch Software Classic Ftp » Version: 1.02

cpe:2.3:a:nch_software:nch_software_classic_ftp:1.02

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-2894

Products

Pricing

Contact Us