7.1 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:S/C:C/I:C/A:C
0.006 Low
EPSS
Percentile
77.8%
Multiple directory traversal vulnerabilities in the mod_site_misc module in ProFTPD before 1.3.3c allow remote authenticated users to create directories, delete directories, create symlinks, and modify file timestamps via directory traversal sequences in a (1) SITE MKDIR, (2) SITE RMDIR, (3) SITE SYMLINK, or (4) SITE UTIME command.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | proftpd-dfsg | <ย 1.3.3a-4 | proftpd-dfsg_1.3.3a-4_all.deb |
Debian | 11 | all | proftpd-dfsg | <ย 1.3.3a-4 | proftpd-dfsg_1.3.3a-4_all.deb |
Debian | 999 | all | proftpd-dfsg | <ย 1.3.3a-4 | proftpd-dfsg_1.3.3a-4_all.deb |
Debian | 13 | all | proftpd-dfsg | <ย 1.3.3a-4 | proftpd-dfsg_1.3.3a-4_all.deb |