darksecurity.de | Entries tagged as directory traversal

Skip to content

Entries tagged as directory traversal

INFOSERVE-ADV2011-09 - zFTPServer Suite 6.0.0.52 'rmdir' Directory Traversal

Posted by Stefan Schurtz on Sunday, December 11. 2011

Advisory:	zFTPServer Suite 6.0.0.52 'rmdir' Directory Traversal
Advisory ID:	INFOSERVE-ADV2011-09
Author:	Stefan Schurtz
Contact:	security@infoserve.de
Affected Software:	Successfully tested on zFTPServer Suite 6.0.0.52
Vendor URL:	http://www.zftpserver.com/
Vendor Status:	fixed
CVE-ID:	CVE-2011-4717

==========================
Vulnerability Description
==========================

zFTPServer 'rmdir' is prone to a Directory Traversal, which makes it possible to delete directories in the system

Continue reading "INFOSERVE-ADV2011-09 - zFTPServer Suite 6.0.0.52 'rmdir' Directory Traversal"

Sidebar

Calendar

Werbung

Exploit-DB updates by Offensive Security

[webapps] File Manager Advanced Shortcode 2.3.2 - Unauthenticated Remote Code Execution (RCE)

Sunday, June 4. 2023

[webapps] MotoCMS Version 3.4.3 - SQL Injection

Sunday, June 4. 2023

[webapps] STARFACE 7.3.0.10 - Authentication with Password Hash Possible

Sunday, June 4. 2023

[webapps] Barebones CMS v2.0.2 - Stored Cross-Site Scripting (XSS) (Authenticated)

Sunday, June 4. 2023

[webapps] Enrollment System Project v1.0 - SQL Injection Authentication Bypass (SQLI)

Sunday, June 4. 2023

OpenBSD Journal

Game of Trees 0.89 released

Monday, June 5. 2023

New versions of LibreSSL released

Sunday, May 28. 2023

cron(8) now supports random ranges with steps

Sunday, May 7. 2023

OpenBGPD 8.0 released

Friday, May 5. 2023

rpki-client 8.4 released

Wednesday, May 3. 2023

Game of Trees 0.88 released!

Sunday, April 30. 2023

VM owners can now override the boot kernel

Sunday, April 30. 2023

vmd(8) moves to a multi-process model

Sunday, April 30. 2023

viogpu(4), a VirtIO GPU driver, added to -current

Friday, April 21. 2023

Archives

Blog Administration

Open login screen

Imprint | Contact | Privacy Statement