CVE-2010-2695

Directory traversal vulnerability in the SFTP/SSH2 virtual server in Xlight FTP Server 3.5.0, 3.5.5, and possibly other versions before 3.6 allows remote authenticated users to read, overwrite, or delete arbitrary files via .. (dot dot) sequences in the (1) ls, (2) rm, (3) rename, and other unspecified commands.

CVSS v2.0 6.5 MEDIUM

6.5^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability : 8.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://osvdb.org/66037
http://secunia.com/advisories/40473	Vendor Advisory
http://www.securityfocus.com/archive/1/512192/100/0/threaded
http://www.xlightftpd.com/whatsnew.htm	Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/60151

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:xlightftpd:xlight_ftp_server:3.5:::::::*
	cpe:2.3:a:xlightftpd:xlight_ftp_server:3.5.5:::::::*

History

No history.

Information

Published : 2010-07-12 17:30

Updated : 2023-12-10 11:03

NVD link : CVE-2010-2695

Mitre link : CVE-2010-2695

CVE.ORG link : CVE-2010-2695

JSON object : View

Products Affected

xlightftpd

xlight_ftp_server

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

{"id": "CVE-2010-2695", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2010-07-12T17:30:02.767", "references": [{"url": "http://osvdb.org/66037", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/40473", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/512192/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.xlightftpd.com/whatsnew.htm", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/60151", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the SFTP/SSH2 virtual server in Xlight FTP Server 3.5.0, 3.5.5, and possibly other versions before 3.6 allows remote authenticated users to read, overwrite, or delete arbitrary files via .. (dot dot) sequences in the (1) ls, (2) rm, (3) rename, and other unspecified commands."}, {"lang": "es", "value": "Vulnerabilidad de salto de directorio en SFTP/SSH2 virtual server en Xlight FTP Server v3.5.0, v3.5.5, y posiblemente otras versiones anteriores a v3.6 permite a atacantes remotos autenticados leer, sobreescribir o eliminar ficheros arbitrarios mediante secuencias .. (punto punto) en (1) ls, (2) rm, (3) rename y otros otros comandos no especificados"}], "lastModified": "2018-10-10T19:59:55.683", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:xlightftpd:xlight_ftp_server:3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E58D1D4-5895-4FDC-B12F-AF289077ABC7"}, {"criteria": "cpe:2.3:a:xlightftpd:xlight_ftp_server:3.5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E1F5820-9FD7-4851-8798-A2D66C5ABCF3"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}