CVE-2011-4800 in Serv-Uinfo

Summary

Directory traversal vulnerability in Serv-U FTP Server before 11.1.0.5 allows remote authenticated users to read and write arbitrary files, and list and create arbitrary directories, via a "..:/" (dot dot colon forward slash) in the (1) list, (2) put, or (3) get commands.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

12/13/2011

Disclosure

12/13/2011

Moderation

VulDB entry created

Entries

VDB-59667 (1)

CPE

ready

CWE

CWE-22 (Confirmed)

Exploit

Download

CVSS

8.8

EPSS

0.01253

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-4800
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-4800
CVE Details	https://www.cvedetails.com/cve/CVE-2011-4800/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!