CVE-2008-7262
published 2010-10-19CVE-2008-7262: Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and…
PriorityP431medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EPSS
1.41%
69.3th percentile
Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a (1) CWD, (2) DELE, (3) STOR, or (4) RETR command.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | python-pyftpdlib | — | — |
| g.rodola | pyftpdlib | <= 0.2.0 | — |
| g.rodola | pyftpdlib | — | — |
| g.rodola | pyftpdlib | — | — |
| g.rodola | pyftpdlib | >= 0 < 0.3.0 | 0.3.0 |
CVSS provenance
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
vendor_debian6.5LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Directory traversal in pyftpdlib
ghsa·2022-05-17
CVE-2008-7262 [MEDIUM] CWE-22 Directory traversal in pyftpdlib
Directory traversal in pyftpdlib
Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a (1) CWD, (2) DELE, (3) STOR, or (4) RETR command.
OSV
Directory traversal in pyftpdlib
osv·2022-05-17
CVE-2008-7262 [MEDIUM] Directory traversal in pyftpdlib
Directory traversal in pyftpdlib
Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a (1) CWD, (2) DELE, (3) STOR, or (4) RETR command.
OSV
CVE-2008-7262: Multiple directory traversal vulnerabilities in FTPServer
osv·2010-10-19
CVE-2008-7262 CVE-2008-7262: Multiple directory traversal vulnerabilities in FTPServer
Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a (1) CWD, (2) DELE, (3) STOR, or (4) RETR command.
Debian
CVE-2008-7262: python-pyftpdlib - Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before...
vendor_debian·2008·CVSS 6.5
CVE-2008-7262 [MEDIUM] CVE-2008-7262: python-pyftpdlib - Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before...
Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a (1) CWD, (2) DELE, (3) STOR, or (4) RETR command.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2010-10-19
Published