Directory Traversal Vulnerability in SmartFTP Client by SmartSoft Ltd
CVE-2010-3099

Currently unrated

Key Information:

Vendor: Smartftp
Status: Smartftp
Vendor: CVE Published:; 20 August 2010

What is CVE-2010-3099?

A directory traversal vulnerability exists in the SmartFTP Client, allowing remote FTP servers to exploit the issue by utilizing a '..' (dot dot backslash) sequence in a filename. This could enable an attacker to overwrite arbitrary files on the client’s system. The vulnerability affects SmartFTP Client versions 4.0.1124.0 and prior to the 4.0 Build 1133 update, posing a risk to file integrity and overall system security.

References

http://secunia.com/advisories/40899

third-party-advisoryx_refsource_SECUNIA

http://www.htbridge.ch/advisory/directory_traversal_in_sm...

x_refsource_MISC

http://www.smartftp.com/forums/index.php?/topic/16425-sma...

x_refsource_MISC

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 20, 2010

JSON

Smartftp

What is CVE-2010-3099?

References

Timeline