Ben Spink : Security Vulnerabilities, CVEs,
Ben Spink CrushFTP FTP Server 2.1.6 and earlier allows a local attacker to access arbitrary files via a '..' (dot dot) attack, or variations, in (1) GET, (2) CD, (3) NLST, (4) SIZE, (5) RETR.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-08-22
Updated
2017-12-19
1 vulnerabilities found