PT-2006-1392 · Farmers Wife · Farmers Wife

Knud Erik Højgaard

Published

2006-01-19

Updated

2017-07-20

CVE-2006-0319

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Farmers WIFE version 4.4 SP1

Description The issue allows remote attackers to create arbitrary files via ".." (dot dot) sequences in a (1) PUT, (2) SIZE, and possibly other commands, due to a directory traversal vulnerability in the FTP server (port 22003/tcp).

Recommendations For Farmers WIFE version 4.4 SP1, consider restricting access to the FTP server on port 22003/tcp until a patch is available. As a temporary workaround, avoid using the PUT and SIZE commands in the FTP server to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-0319

Affected Products

Farmers Wife

PT-2006-1392 · Farmers Wife · Farmers Wife

CVE-2006-0319

Related Identifiers

Affected Products

References · 8