Vulnerabilities > CVE-2002-1054 - Unspecified vulnerability in Pablo Software Solutions Pablo FTP Server 1.0Build9

CVSS 6.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

pablo-software-solutions

NVD

Published: 2002-10-04

Updated: 2016-09-17

Summary

Directory traversal vulnerability in Pablo FTP server 1.0 build 9 and earlier allows remote authenticated users to list arbitrary directories via "..\" (dot-dot backslash) sequences in a LIST command.

Vulnerable Configurations

Part	Description	Count
Application	Pablo_Software_Solutions Pablo Software Solutions Pablo FTP Server 1.0_Build_9	1

References

http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0035.html
http://online.securityfocus.com/archive/1/283665
http://www.iss.net/security_center/static/9647.php
http://www.osvdb.org/4995
http://www.pablovandermeer.nl/ftpserversrc.zip
http://www.securityfocus.com/bid/5283