Security Advisory

CVE-2011-4800

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2011-12-14 00:00:00

Last updated 2024-09-16 23:01:04

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in Serv-U FTP Server before 11.1.0.5 allows remote authenticated users to read and write arbitrary files, and list and create arbitrary directories, via a "..:/" (dot dot colon forward slash) in the (1) list, (2) put, or (3) get commands.

← Browse all CVEs View on cve.org ↗