CVE-2018-10916 — Improper Input Validation in Lftp

CWE-20 — Improper Input Validation8 documents7 sources

Severity

6.5MEDIUMNVD

EPSS

0.7%

top 27.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Lftp Project Lftp Debian Lftp Canonical Ubuntu Linux +1 more

Timeline

PublishedAug 1

Latest updateMay 14

Description

It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. A remote attacker may trick a user to use reverse mirroring on an attacker controlled FTP server, resulting in the removal of all files in the current working directory of the victim's system.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/lftp< lftp 4.8.4-1 (bookworm)

▶Debianlftp_project/lftp< 4.8.4-1+3

▶NVDlftp_project/lftp4.8.3

▶NVDopensuse/leap42.3

Also affects: Ubuntu Linux 12.04

Patches

Patch: bugzilla.redhat.com ↗Patch: github.com ↗Patch: bugzilla.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-8mjf-52xq-g6h8: It has been discovered that lftp up to and including version 4↗2022-05-14

▶

OSV

CVE-2018-10916: It has been discovered that lftp up to and including version 4↗2018-08-01

▶

📋Vendor Advisories

Ubuntu

LFTP vulnerability↗2018-08-06

▶

Ubuntu

LFTP vulnerability↗2018-08-06

▶

Red Hat

lftp: particular remote file names may lead to current working directory erased↗2018-05-16

▶

Debian

CVE-2018-10916: lftp - It has been discovered that lftp up to and including version 4.8.3 does not prop...↗2018

▶

💬Community

Bugzilla

CVE-2018-10916 lftp: particular remote file names may lead to current working directory erased↗2018-07-31

▶