CVE-2008-2821
published 2008-06-23CVE-2008-2821: Directory traversal vulnerability in the FTP client in Glub Tech Secure FTP before 2.5.16 on Windows allows remote FTP servers to create or overwrite arbitrary…
PriorityP342critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
2.53%
82.9th percentile
Directory traversal vulnerability in the FTP client in Glub Tech Secure FTP before 2.5.16 on Windows allows remote FTP servers to create or overwrite arbitrary files via a ..\ (dot dot backslash) in a response to a LIST command, a related issue to CVE-2002-1345.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| glub | secure_ftp | <= 2.5.15 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/30725http://vuln.sg/glubsecureftp2515-en.htmlhttp://www.securityfocus.com/bid/29741http://www.vupen.com/english/advisories/2008/1852/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/43093http://secunia.com/advisories/30725http://vuln.sg/glubsecureftp2515-en.htmlhttp://www.securityfocus.com/bid/29741http://www.vupen.com/english/advisories/2008/1852/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/43093
2008-06-23
Published