Directory Traversal Vulnerability in WinFrigate FTP Client
CVE-2010-3097

Currently unrated

Key Information:

Vendor: Winfrigate
Status: Frigate 3
Vendor: CVE Published:; 20 August 2010

What is CVE-2010-3097?

The Frigate 3 FTP Client, when used in version 3.36 or earlier, is vulnerable to a directory traversal issue. This flaw enables remote FTP servers to manipulate file paths, allowing them to overwrite arbitrary files on the client’s system by exploiting the use of 'dot dot backslash' sequences in filenames. This vulnerability poses a significant risk as it can lead to unauthorized file modifications, potentially compromising sensitive data and system integrity.

References

http://www.htbridge.ch/advisory/directory_traversal_in_fr...

x_refsource_MISC

http://secunia.com/advisories/40898

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 20, 2010

CVE-2010-3097 Data

JSON

Winfrigate

What is CVE-2010-3097?

References

Timeline