Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1109

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1109
Last Modified 05 Sep 2008 04:25:42
Published 12 Sep 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1109

Summary

Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal directory contents via a .. (dot dot) in the (1) LIST, (2) QUOTE SIZE, and (3) QUOTE MDTM commands.

Vulnerable Systems

Application

  • Khamil Landross And Zack Jones Eftp 2.0.7.337


References

XF - eftp-quote-reveal-information(7114)

XF - eftp-list-directory-traversal(7113)

BID - 3333

BID - 3331

BUGTRAQ - 20010912 EFTP Version 2.0.7.337 vulnerabilities

MISC - http://www.eftp.org/releasehistory.html


Last Updated: 27 May 2016 10:36:32