Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0139

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0139
Last Modified 10 Sep 2008 08:00:35
Published 25 Mar 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0139

Summary

Pi-Soft SpoonFTP 1.1 and earlier allows remote attackers to redirect traffic to other sites (aka FTP bounce) via the PORT command.

Vulnerable Systems

Application

  • Pi-soft Spoonftp 0.01.1.0.1

  • Pi-soft Spoonftp 1.0

  • Pi-soft Spoonftp 1.00.12

  • Pi-soft Spoonftp 1.00.13

  • Pi-soft Spoonftp 1.1


References

XF - spoonftp-ftp-bounce(7943)

CONFIRM - http://www.pi-soft.com/spoonftp/index.shtml

BUGTRAQ - 20020120 Bounce vulnerability in SpoonFTP 1.1.0.1

BID - 3910


Last Updated: 27 May 2016 10:36:48