PT-2001-1663 · Brs · Brs Webweaver Ftp Server

Published

2001-05-24

Updated

2008-09-05

CVE-2001-0452

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions BRS WebWeaver FTP server versions prior to 0.64 Beta

Description The issue allows remote attackers to obtain the real pathname of the server. This can be achieved by sending a "CD *" command followed by an ls command.

Recommendations For versions prior to 0.64 Beta, update to version 0.64 Beta or later to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-0452

Affected Products

Brs Webweaver Ftp Server

PT-2001-1663 · Brs · Brs Webweaver Ftp Server

CVE-2001-0452

Related Identifiers

Affected Products

References · 5