CVE-2006-5981

Name of the Vulnerable Software and Affected Versions SeleniumServer FTP Server version 1.0 and possibly earlier

Description The issue allows remote attackers to perform directory traversal, enabling them to list arbitrary directories, read arbitrary files, and upload arbitrary files. This is achieved through directory traversal sequences in the DIR (LIST or NLST), GET (RETR), and PUT (STOR) commands.

Recommendations For SeleniumServer FTP Server version 1.0 and possibly earlier, consider restricting access to the FTP server until a fix is available, and avoid using the DIR, GET, and PUT commands with untrusted input.