cbcvebase.
CVE-2015-7601
published 2015-09-29

CVE-2015-7601: Directory traversal vulnerability in PCMan's FTP Server 2.0.7 allows remote attackers to read arbitrary files via a ..// (dot dot double slash) in a RETR…

PriorityP265high7.8CVSS 2.0
AVNACLAuNCCINAN
EXPLOIT
EPSS
58.33%
99.0th percentile
Directory traversal vulnerability in PCMan's FTP Server 2.0.7 allows remote attackers to read arbitrary files via a ..// (dot dot double slash) in a RETR command.

Affected

1 ranges
VendorProductVersion rangeFixed in
pcman_s_ftp_server_projectpcman_s_ftp_server

Detection & IOCsextracted from sources · hover to see the quote

commandRETR ..//..//..//..//..//..//..//..//..//..//..//boot.ini
  • Detect FTP RETR commands containing the traversal pattern '..//' (dot dot double slash) which is the specific traversal sequence exploited in this CVE.
  • Monitor FTP sessions for RETR commands with repeated '..//' sequences (e.g., 11 or more occurrences) targeting sensitive files such as boot.ini, indicating exploitation attempts.
  • Flag use of the Metasploit auxiliary module pcman_ftp_traversal against FTP servers, which crafts RETR commands with '..//' traversal strings to download arbitrary files.
  • ·Exploit was tested specifically against Windows XP Service Pack 3 (English); traversal depth and target file paths may need adjustment for other OS versions or configurations.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.