CVE-2002-1544
Published Mar 31, 2003
Last updated 16 years ago
Overview
- Description
- Directory traversal vulnerability in CooolSoft Personal FTP Server 2.24 allows remote attackers to read or modify arbitrary files via .. (dot dot) sequences in the commands (1) LIST (ls), (2) mkdir, (3) put, or (4) get.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.4
- Impact score
- 4.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cooolsoft:personal_ftp_server:2.24:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "505EB3D0-E831-48FF-87D5-CFBA4B46897A"
}
],
"operator": "OR"
}
]
}
]