PT-2017-17123 · Efs · Easy File Sharing Ftp Server

Published

2017-03-16

Updated

2017-03-21

CVE-2017-6510

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Easy File Sharing FTP Server version 3.6

Description The issue allows an attacker to perform a directory traversal, enabling them to list and download any file from any folder outside the FTP root directory.

Recommendations For Easy File Sharing FTP Server version 3.6, update to a version that addresses the directory traversal issue to prevent unauthorized access to files outside the FTP root directory.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2017-6510

Affected Products

Easy File Sharing Ftp Server

PT-2017-17123 · Efs · Easy File Sharing Ftp Server

CVE-2017-6510

Weakness Enumeration

Related Identifiers

Affected Products

References · 5