Vulnerability Description
Directory traversal vulnerability in RaidenFTPD Server 2.1 before build 952 allows attackers to access files outside the ftp root via dot dot attacks, such as (1) .... in CWD, (2) .. in NLST, or (3) ... in NLST.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Team Johnlong | Raidenftpd | 2.1_build_947 |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-04/0465.htmlPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6455
- http://archives.neohapsis.com/archives/bugtraq/2001-04/0465.htmlPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6455
FAQ
What is CVE-2001-0491?
CVE-2001-0491 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Directory traversal vulnerability in RaidenFTPD Server 2.1 before build 952 allows attackers to access files outside the ftp root via dot dot attacks, such as (1) .... in CWD, (2) .. in NLST, or (3) ....
How severe is CVE-2001-0491?
CVE-2001-0491 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0491?
Check the references section above for vendor advisories and patch information. Affected products include: Team Johnlong Raidenftpd.