Back to search
CVE-2008-2795
Published: Jun 20, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Directory traversal vulnerability in the FTP and SFTP clients in IDM Computer Solutions Inc UltraEdit 14.00b allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) or a ..\ (dot dot backslash) in a response to a LIST command.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
30749
third-party-advisory
x_refsource_SECUNIA
ultraedit-list-directory-traversal(43149)
vdb-entry
x_refsource_XF
http://vuln.sg/ultraedit1400b-en.html
x_refsource_MISC
29784
vdb-entry
x_refsource_BID
ADV-2008-1864
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now