Home FTP Server 'MKD' Command Directory Traversal Vulnerability Network Vulnerability

Summary

Home FTP Server is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user- supplied input. Exploiting this issue allows an authenticated user to create directories outside the FTP root directory, which may lead to other attacks. Home FTP Server 1.10.1.139 is vulnerable other versions may also be affected.

References

http://www.securityfocus.com/archive/1/507932
http://www.securityfocus.com/bid/37041

Updated on 2017-03-28

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

httpdx Multiple Remote Denial Of Service Vulnerabilities
Cerberus FTP Server Long Command Remote Denial of Service Vulnerability
Home FTP Server 'SITE INDEX' Command Remote Denial of Service Vulnerability
Core FTP Server 'Type' Command Remote Denial of Service Vulnerability
pyftpdlib FTP Server Information Disclosure Vulnerability