CVE-2013-5655

Name of the Vulnerable Software and Affected Versions YingZhi Python Programming Language for iOS version 1.9

Description The issue allows remote attackers to potentially read and write arbitrary files due to a directory traversal vulnerability in the FTP server. This is achieved by using a .. (dot dot) in the default URI.

Recommendations For version 1.9, consider restricting access to the FTP server until a fix is available. As a temporary workaround, avoid using the default URI with .. (dot dot) sequences to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.