Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1679

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-1679
Last Modified 05 Sep 2008 04:42:03
Published 04 Aug 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1679

Summary

Directory traversal vulnerability in TwinFTP 1.0.3 R2 allows remote attackers create arbitrary files via a .../ (triple dot) in the (1) CWD, (2) STOR, or (3) RETR commands.

Vulnerable Systems

Application

  • Jigunet Twinftp Enterprise 1.0.3 R2

  • Jigunet Twinftp Standard 1.0.3 R2


References

XF - twinftp-argument-directory-traversal(17323)

BID - 11159

MISC - http://www.security.org.sg/vuln/twinftp103r2.html

SECUNIA - 12511

BUGTRAQ - 20040913 Directory Traversal Vulnerability in TwinFTP Server allows overwriting of files outside FTP directory


Last Updated: 27 May 2016 10:39:08