Directory traversal vulnerability in the FTP server (port 22003/tcp) in Farmers WIFE 4.4 SP1 allows remote attackers to create arbitrary files via ".." (dot dot) sequences in a (1) PUT, (2) SIZE, and possibly other commands.
References
Configurations
History
21 Nov 2024, 00:06
Type | Values Removed | Values Added |
---|---|---|
References | () http://marc.info/?l=full-disclosure&m=113717162320654&w=2 - | |
References | () http://secunia.com/advisories/18508 - Vendor Advisory | |
References | () http://www.lort.dk/DSR-farmerswife44sp1.pl - Exploit | |
References | () http://www.osvdb.org/22496 - | |
References | () http://www.securityfocus.com/bid/16321 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/24190 - |
Information
Published : 2006-01-19 01:03
Updated : 2024-11-21 00:06
NVD link : CVE-2006-0319
Mitre link : CVE-2006-0319
CVE.ORG link : CVE-2006-0319
JSON object : View
Products Affected
farmers_wife
- farmers_wife
CWE