Lucene search

[email protected]CVE-2006-5981

HistoryNov 20, 2006 - 9:07 p.m.

CVE-2006-5981

2006-11-2021:07:00

CWE-22

[email protected]

web.nvd.nist.gov

seleniumserver ftp server

cve-2006-5981

directory traversal

vulnerabilities

nvd

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

7.4 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

57.2%

JSON

Multiple directory traversal vulnerabilities in SeleniumServer FTP Server 1.0, and possibly earlier, allow remote attackers to list arbitrary directories, read arbitrary files, and upload arbitrary files via directory traversal sequences in the (1) DIR (LIST or NLST), (2) GET (RETR), and (3) PUT (STOR) commands.

Affected configurations

NVD

Node

biba_softwareseleniumserver_ftp_serverMatch1.0

CPENameOperatorVersion
biba_software:seleniumserver_ftp_serverbiba software seleniumserver ftp servereq1.0

CPE	Name	Operator	Version
biba_software:seleniumserver_ftp_server	biba software seleniumserver ftp server	eq	1.0

References

secunia.com/advisories/22928

whitestar.linuxbox.org/pipermail/exploits/2006-November/000037.html

www.osvdb.org/30448

www.vupen.com/english/advisories/2006/4540

exchange.xforce.ibmcloud.com/vulnerabilities/30332

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

7.4 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

57.2%

JSON

Related for CVE-2006-5981

nvd1 cvelist1