PT-2005-3074 · Golden · Golden Ftp Server

Published

2005-07-05

Updated

2008-09-05

CVE-2005-2142

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Golden FTP Server version 2.60

Description: A directory traversal issue allows remote authenticated attackers to list arbitrary directories by including a ".." (backslash dot dot) in an LS (LIST) command.

Recommendations: For Golden FTP Server version 2.60, consider restricting access to the LS command until a patch is available. As a temporary workaround, avoid using the ".." sequence in LS commands to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-2142

Affected Products

Golden Ftp Server

PT-2005-3074 · Golden · Golden Ftp Server

CVE-2005-2142

Related Identifiers

Affected Products

References · 2