Vulnerability Description
Multiple directory traversal vulnerabilities in SeleniumServer FTP Server 1.0, and possibly earlier, allow remote attackers to list arbitrary directories, read arbitrary files, and upload arbitrary files via directory traversal sequences in the (1) DIR (LIST or NLST), (2) GET (RETR), and (3) PUT (STOR) commands.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Biba Software | Seleniumserver Ftp Server | 1.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/22928Vendor Advisory
- http://whitestar.linuxbox.org/pipermail/exploits/2006-November/000037.html
- http://www.osvdb.org/30448
- http://www.vupen.com/english/advisories/2006/4540Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30332
- http://secunia.com/advisories/22928Vendor Advisory
- http://whitestar.linuxbox.org/pipermail/exploits/2006-November/000037.html
- http://www.osvdb.org/30448
- http://www.vupen.com/english/advisories/2006/4540Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30332
FAQ
What is CVE-2006-5981?
CVE-2006-5981 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Multiple directory traversal vulnerabilities in SeleniumServer FTP Server 1.0, and possibly earlier, allow remote attackers to list arbitrary directories, read arbitrary files, and upload arbitrary fi...
How severe is CVE-2006-5981?
CVE-2006-5981 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5981?
Check the references section above for vendor advisories and patch information. Affected products include: Biba Software Seleniumserver Ftp Server.