Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1383

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2006-1383
Last Modified 07 Mar 2011 09:32:57
Published 24 Mar 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2006-1383

Summary

Directory traversal vulnerability in Baby FTP Server (BabyFTP) 1.24 allows remote authenticated users to determine existence of files outside the intended document root via unspecified manipulations, which generate different error messages depending on whether a file exists or not.

Vulnerable Systems

Application

  • Pablo Software Solutions Baby Ftp Server 1.24


References

VUPEN - ADV-2006-1069

BID - 17205

OSVDB - 24057

SECUNIA - 19338

XF - baby-ftp-information-disclosure(25413)


Last Updated: 27 May 2016 10:42:02