Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the (1) LIST (ls) or (2) GET commands.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Shambala_server |
Evolvable_corporation |
4.5 |
4.5 |
References