Medium Published: Feb 16, 2001 Modified: Apr 03, 2025

CVE-2001-0054

5 CVSS Score Medium

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Export CVE-2001-0054 Data:

Link copied!

Description

Directory traversal vulnerability in FTP Serv-U before 2.5i allows remote attackers to escape the FTP root and read arbitrary files by appending a string such as "/..%20." to a CD command, a variant of a .. (dot dot) attack.

CVSS Vector Details

Attack Vector Network

Attack Complexity Low

Confidentiality P

Integrity None

Availability None

Affected Software Configurations

a solarwinds serv-u_file_server 3.0.0.16 * * * * * * *

Weaknesses (CWE)

CWE-22

References & External Links

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

CVE History Timeline

Jan 01, 2004 05:00 Initial Analysis

Oct 18, 2016 02:09 CVE Modified

Oct 10, 2017 01:29 CVE Modified

Jul 28, 2020 14:34 CPE Deprecation Remap

May 14, 2024 01:17 CVE Modified

Nov 20, 2024 23:34 CVE Modified

← Back to CVE Tracker