CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ben Spink: >> Crushftp Ftp Server >> 2.1.4 Security Vulnerabilities

CVE-2001-0582

Ben Spink CrushFTP FTP Server 2.1.6 and earlier allows a local attacker to access arbitrary files via a '..' (dot dot) attack, or variations, in (1) GET, (2) CD, (3) NLST, (4) SIZE, (5) RETR.

CVSS Score

4.6

EPSS Score

0.001

Published

2001-08-22

Page 1

Vulnerabilities

Vulnerable Software

Ben Spink: >> Crushftp Ftp Server >> 2.1.4 Security Vulnerabilities

Products

Pricing

Contact Us