Directory Traversal Vulnerability in GuildFTPd by GuildFTP
CVE-2001-0767

Currently unrated

Key Information:

Vendor: Steve Poulsen
Status: Guildftpd
Vendor: CVE Published:; 18 October 2001

🔔 Create Steve Poulsen Vulnerability Alert

What is CVE-2001-0767?

A directory traversal vulnerability in GuildFTPd version 0.9.7 allows attackers to exploit the software's handling of file paths. By using '..' sequences in commands such as LS and GET, malicious users can list or access arbitrary files and directories on the server. This type of vulnerability poses significant risks, enabling unauthorized access to sensitive information and system configurations.

References

http://www.nitrolic.com/

x_refsource_MISC

http://www.securityfocus.com/bid/2789

vdb-entryx_refsource_BID

http://archives.neohapsis.com/archives/bugtraq/2001-05/02...

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 18, 2001
Vulnerability Reserved
Oct 12, 2001