Directory Traversal Vulnerability in GlobalSCAPE CuteFTP Home and Pro
CVE-2008-2779

Currently unrated

Key Information:

Vendor: Globalscape
Status: Cuteftp
Vendor: CVE Published:; 19 June 2008

🔔 Create Globalscape Vulnerability Alert

What is CVE-2008-2779?

A directory traversal vulnerability exists in GlobalSCAPE CuteFTP Home and Pro versions, allowing remote FTP servers to manipulate directories by using sequences like ..\ in responses to LIST commands. This flaw can permit the unauthorized creation or modification of files, potentially leading to code execution if the files are planted in sensitive directories like the Startup folder.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/42633

vdb-entryx_refsource_XF

http://vuln.sg/cuteftp820-en.html

x_refsource_MISC

http://secunia.com/advisories/29760

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 19, 2008
Vulnerability Reserved
Jun 19, 2008

CVE-2008-2779 Data

JSON