Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0605

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2014-0605
Last Modified 09 Feb 2015 09:08:47
Published 06 Feb 2015 06:59:02
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-0605

Summary

Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP Client before 14.1.429 allows remote attackers to execute arbitrary code via unspecified vectors to the SaveSettings method.

Vulnerable Systems

Application

  • Attachmate Reflection Ftp Client 14.1.420


References

MISC - http://www.zerodayinitiative.com/advisories/ZDI-14-290/

CONFIRM - http://support.attachmate.com/techdocs/2501.html


Last Updated: 27 May 2016 11:03:26