PT-2004-1763 · Fastream · Netfile Ftp/Web Server
Andres Tarasco Acuna
+1
·
Published
2004-07-13
·
Updated
2024-02-14
·
CVE-2004-0676
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Fastream NETFile FTP/Web Server versions 6.7.2.1085 and earlier
Description
A directory traversal issue allows remote attackers to create or delete arbitrary files by using .. (dot dot) and // (double slash) sequences in the
filename parameter.Recommendations
For versions 6.7.2.1085 and earlier, update to a version later than 6.7.2.1085 to resolve the issue.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Netfile Ftp/Web Server