Lucene search
HistoryDec 30, 2004 - 5:00 a.m.
CVE-2004-1376
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.5
Confidence
Low
EPSS
0.948
Percentile
99.3%
Directory traversal vulnerability in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote malicious FTP servers to overwrite arbitrary files via … (dot dot) sequences in filenames returned from a LIST command.
Affected configurations
Node
microsoftinternet_explorerMatch5.01
ORmicrosoftinternet_explorerMatch5.5
ORmicrosoftinternet_explorerMatch6.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | internet_explorer | 5.01 | cpe:2.3:a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:* |
| microsoft | internet_explorer | 5.5 | cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:* |
| microsoft | internet_explorer | 6.0 | cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2004-1376
2005-01-19 05:00:00
cvelist
cvelist
CVE-2004-1376
2005-01-19 05:00:00
checkpoint_advisories
checkpoint_advisories
Internet Explorer FTP Client Directory Traversal (CVE-2004-1376)
2009-10-28 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-686-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 686-1 (gftp)
2008-01-17 00:00:00
osv
osv
gftp - missing input sanitising
2005-02-17 00:00:00
freebsd
freebsd
gftp -- directory traversal vulnerability
2005-02-04 00:00:00
nessus
nessus
FreeBSD : gftp -- directory traversal vulnerability (2d8cf857-81ea-11d9-a9e7-0001020eed82)
2005-07-13 00:00:00
Debian DSA-686-1 : gftp - missing input sanitising
2005-02-18 00:00:00
debian
debian
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.5
Confidence
Low
EPSS
0.948
Percentile
99.3%
Related for NVD:CVE-2004-1376