CVE-2010-2426 – Titan FTP XCRC Directory Traversal Information Disclosure
https://notcve.org/view.php?id=CVE-2010-2426
Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read arbitrary files, determine file size, via "..//" sequences in the xcrc command. Vulnerabilidad de salto de directorio en TitanFTPd en South River Technologies Titan FTP Server v8.10.1125, y probablemente versiones anteriores, permite a usuarios autentificados remotamente leer ficheros de su elección, tamaño de fichero determinado, a través de la secuencia "..//" en el comando xcrc. • http://osvdb.org/65533 http://secunia.com/advisories/40237 http://www.securityfocus.com/archive/1/511839/100/0/threaded http://www.securityfocus.com/bid/40949 https://exchange.xforce.ibmcloud.com/vulnerabilities/59492 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVE-2004-1641 – Titan FTP Server - Long Command Heap Overflow
https://notcve.org/view.php?id=CVE-2004-1641
Heap-based buffer overflow in Titan FTP 3.21 and earlier allows remote attackers to cause a denial of service (crash) via a long FTP command such as (1) CWD, (2) STAT, or (3) LIST. • https://www.exploit-db.com/exploits/426 http://marc.info/?l=bugtraq&m=109396159332523&w=2 http://secunia.com/advisories/12419 http://www.securityfocus.com/bid/11069 https://exchange.xforce.ibmcloud.com/vulnerabilities/17172 •