Directory traversal vulnerability in Golden FTP server pro 2.52 allows remote attackers to read arbitrary files via a .. (backward slash dot dot) with a leading (double quote) in the GET command.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Golden_ftp_server | Kmint21_software | 1.00b (including) | 1.00b (including) |
| Golden_ftp_server | Kmint21_software | 1.20b (including) | 1.20b (including) |
| Golden_ftp_server | Kmint21_software | 1.30b (including) | 1.30b (including) |
| Golden_ftp_server | Kmint21_software | 1.31b (including) | 1.31b (including) |
| Golden_ftp_server | Kmint21_software | 1.92 (including) | 1.92 (including) |
| Golden_ftp_server | Kmint21_software | 2.0.2b (including) | 2.0.2b (including) |
| Golden_ftp_server | Kmint21_software | 2.0.5b (including) | 2.0.5b (including) |
| Golden_ftp_server | Kmint21_software | 2.10 (including) | 2.10 (including) |
| Golden_ftp_server | Kmint21_software | 2.16 (including) | 2.16 (including) |
| Golden_ftp_server | Kmint21_software | 2.52 (including) | 2.52 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=111530871716145\u0026w=2
- http://secunia.com/advisories/15175
- http://www.securityfocus.com/bid/13479
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20668
- http://marc.info/?l=bugtraq\u0026m=111530871716145\u0026w=2
- http://secunia.com/advisories/15175
- http://www.securityfocus.com/bid/13479
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20668