Vulnerabilities > CVE-2001-1031 - Directory Traversal vulnerability in Charles Clark Meteor Ftpd 1.0

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

charles-clark

NVD

Published: 2001-09-27

Updated: 2017-12-19

Summary

Directory traversal vulnerability in Meteor FTP 1.0 allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the ls/LIST command, or (2) a ... in the cd/CWD command.

Vulnerable Configurations

Part	Description	Count
Application	Charles_Clark Charles Clark Meteor Ftpd 1.0	1

References

http://207.202.218.172/
http://archives.neohapsis.com/archives/bugtraq/2001-09/0231.html
http://www.securityfocus.com/bid/3374
https://exchange.xforce.ibmcloud.com/vulnerabilities/7176