CompleteFTP Directory Traversal Vulnerability Network Vulnerability

Summary

CompleteFTP is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to download arbitrary files outside of the FTP server root directory. This may aid in further attacks. CompleteFTP 3.3.0 is vulnerable other versions may also be affected.

References

http://www.enterprisedt.com/products/completeftp/
http://www.securityfocus.com/bid/39802

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

GuildFTPd Directory Traversal
ProFTPD Denial of Service Vulnerability
RaidenFTPD Directory Traversal flaw
TYPSoft empty username DoS
pyftpdlib FTP Server Information Disclosure Vulnerability

Take action and discover your vulnerabilities