CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2010-4095
https://notcve.org/view.php?id=CVE-2010-4095
Directory traversal vulnerability in the FTP client in Serengeti Systems Incorporated Robo-FTP 3.7.3, and probably other versions before 3.7.5, allows remote FTP servers to write arbitrary files via a .. (dot dot) in a filename in a server response. Vulnerabilidad de directorio traversal en el cliente de FTP en Serengeti Systems Incorporated Robo-FTP v3.7.3, y probablemente otras versiones anteriores a v3.7.5, permite a servidores FTP escribir ficheros de su lección a través de los caracteres .. (punto punto) en ficheros en una respuesta de servidor. • http://kb.robo-ftp.com/change_log/show/77 http://secunia.com/advisories/41809 http://www.htbridge.ch/advisory/directory_traversal_vulnerability_in_robo_ftp.html http://www.securityfocus.com/archive/1/514267/100/0/threaded http://www.securityfocus.com/bid/44073 https://exchange.xforce.ibmcloud.com/vulnerabilities/62548 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •