PT-2000-1521 · Glftpd · Glftpd
Published
2000-06-26
·
Updated
2008-09-10
·
CVE-2000-0587
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
glftpd version 1.18
Description
The issue allows remote attackers to bypass access restrictions for directories by utilizing the file name completion capability.
Recommendations
For glftpd version 1.18, consider disabling the privpath directive as a temporary workaround until a patch is available.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Glftpd