Vulnerabilities > CVE-1999-0201 - Unspecified vulnerability in FTP

047910
CVSS 6.4 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
ftp
nessus
NVD
Published: 1997-01-01
Updated: 2022-08-17

Summary

A quote cwd command on FTP servers can reveal the full path of the home directory of the "ftp" user.

Vulnerable Configurations

Part Description Count
Application
Ftp
1

Nessus

NASL familyFTP
NASL idFTP_REALPATH.NASL
descriptionIt is possible to determine the full path of the home directory of the
last seen2020-06-01
modified2020-06-02
plugin id10087
published1999-06-22
reporterThis script is Copyright (C) 1999-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/10087
titleMultiple FTP Server QUOTE CWD Command Home Path Disclosure

References