Vulnerabilities > CVE-2001-0963 - Directory Traversal vulnerability in Pi-Soft Spoonftp 1.1

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

pi-soft

NVD

Published: 2001-09-20

Updated: 2017-10-10

Summary

Directory traversal vulnerability in SpoonFTP 1.1 allows local and sometimes remote attackers to access files outside of the FTP root via a ... (modified dot dot) in the CD (CWD) command.

Vulnerable Configurations

Part	Description	Count
Application	Pi-Soft PI Soft Spoonftp 1.1	1

References

http://archives.neohapsis.com/archives/bugtraq/2001-09/0171.html
http://www.osvdb.org/1953
http://www.pi-soft.com/spoonftp/index.shtml
http://www.securityfocus.com/bid/3351
https://exchange.xforce.ibmcloud.com/vulnerabilities/7147