PT-2015-7569 · Konica Minolta · Konica Minolta Ftp Utility

Shinnai

Published

2015-09-29

Updated

2015-09-30

CVE-2015-7603

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Konica Minolta FTP Utility version 1.0

Description A directory traversal issue allows remote attackers to read arbitrary files by using a .. (dot dot backslash) in a RETR command.

Recommendations For Konica Minolta FTP Utility version 1.0, consider restricting access to the RETR command or disabling the FTP utility until a patch is available to prevent exploitation of this issue.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2015-7603

Affected Products

Konica Minolta Ftp Utility

PT-2015-7569 · Konica Minolta · Konica Minolta Ftp Utility

CVE-2015-7603

Weakness Enumeration

Related Identifiers

Affected Products

References · 5