CVE-2010-4790

Name of the Vulnerable Software and Affected Versions FilterFTP versions 2.0.3 through 2.0.5 FilterFTP versions prior to 2.0.3

Description The issue allows remote FTP servers to write arbitrary files via a ".." (dot dot backslash) in a filename. This is a directory traversal vulnerability.

Recommendations For FilterFTP versions 2.0.3 through 2.0.5, update to a version that fixes this issue. For FilterFTP versions prior to 2.0.3, update to a version that fixes this issue. As a temporary workaround, consider restricting the ability of remote FTP servers to write files to the system.