CVE-2001-0963

Name of the Vulnerable Software and Affected Versions SpoonFTP version 1.1

Description A directory traversal issue allows local and sometimes remote attackers to access files outside of the FTP root via a modified dot dot in the CWD command.

Recommendations For SpoonFTP version 1.1, consider restricting access to the CWD command until a patch is available. As a temporary workaround, avoid using the CWD command with modified dot dot sequences to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.