Vulnerabilities > CVE-2002-1345
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Directory traversal vulnerabilities in multiple FTP clients on UNIX systems allow remote malicious FTP servers to create or overwrite files as the client user via filenames containing /absolute/path or .. (dot dot) sequences.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 10 | |
OS | 1 | |
OS | 4 |
References
- ftp://patches.sgi.com/support/free/security/advisories/20021205-01-A
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0102.html
- http://marc.info/?l=bugtraq&m=103962838628940&w=2
- http://www.iss.net/security_center/static/10821.php
- http://www.kb.cert.org/vuls/id/210409
- http://www.securityfocus.com/bid/6360