Vulnerabilities > CVE-2004-2184 - Directory Traversal vulnerability in Yak! Chat Client FTP Server
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Directory traversal vulnerability in Digicraft Yak! server 2.0 through 2.1.2 allows remote attackers to read or write arbitrary files via "../" or "..\" sequences in commands such as (1) dir or (2) put.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 6 |
Exploit-Db
| description | Yak! Chat Client 2.x FTP Server Directory Traversal Vulnerability. CVE-2004-2184. Dos exploit for windows platform |
| id | EDB-ID:24684 |
| last seen | 2016-02-02 |
| modified | 2004-10-15 |
| published | 2004-10-15 |
| reporter | Luigi Auriemma |
| source | https://www.exploit-db.com/download/24684/ |
| title | Yak! Chat Client 2.x FTP Server Directory Traversal Vulnerability |
References
- http://aluigi.altervista.org/adv/yak-adv.txt
- http://marc.info/?l=full-disclosure&m=109788315103778&w=2
- http://secunia.com/advisories/12849
- http://securitytracker.com/id?1011708
- http://www.osvdb.org/10763
- http://www.securityfocus.com/archive/1/378533
- http://www.securityfocus.com/bid/11433
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17740