CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
10.1%
wu-ftpd 2.6.2 and earlier, with the restricted-gid option enabled, allows
local users to bypass access restrictions by changing the permissions to
prevent access to their home directory, which causes wu-ftpd to use the
root directory instead.