CVE-2005-1480 - OpenCVE

Directory traversal vulnerability in RaidenFTPD before 2.4.2241 allows remote attackers to read arbitrary files via a "..\\" (dot dot backslash) in the urlget site command.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Raiden Professional Servers	Raidenftpd

Configuration 1 [-]

cpe:2.3:a:raiden_professional_servers:raidenftpd:*:*:*:*:*:*:*:*

References

Link	Resource
http://forum.raidenftpd.com/showflat.php?Board=UBB13&Number=45685
http://marc.info/?l=bugtraq&m=111507556127582&w=2
http://secunia.com/advisories/15037	Patch
http://www.osvdb.org/15713
http://www.securityfocus.com/bid/13292
https://exchange.xforce.ibmcloud.com/vulnerabilities/20368

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2005-05-11T04:00:00

Updated: 2017-07-10T14:57:01

Reserved: 2005-05-11T00:00:00

Link: CVE-2005-1480

JSON object: View

NVD Information

Status : Modified

Published: 2005-05-11T04:00:00.000

Modified: 2017-07-11T01:32:39.407

Link: CVE-2005-1480

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-05-02T00:00:00", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in RaidenFTPD before 2.4.2241 allows remote attackers to read arbitrary files via a \"..\\\\\" (dot dot backslash) in the urlget site command."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "13292", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/13292"}, {"name": "15713", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/15713"}, {"name": "20050502 Directory Traversal Vuln - RaidenFTPD 2.4 < Build 2241", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=111507556127582&w=2"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://forum.raidenftpd.com/showflat.php?Board=UBB13&Number=45685"}, {"name": "raidenftpd-directory-traversal(20368)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/20368"}, {"name": "15037", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/15037"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-1480", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in RaidenFTPD before 2.4.2241 allows remote attackers to read arbitrary files via a \"..\\\\\" (dot dot backslash) in the urlget site command."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "13292", "refsource": "BID", "url": "http://www.securityfocus.com/bid/13292"}, {"name": "15713", "refsource": "OSVDB", "url": "http://www.osvdb.org/15713"}, {"name": "20050502 Directory Traversal Vuln - RaidenFTPD 2.4 < Build 2241", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=111507556127582&w=2"}, {"name": "http://forum.raidenftpd.com/showflat.php?Board=UBB13&Number=45685", "refsource": "CONFIRM", "url": "http://forum.raidenftpd.com/showflat.php?Board=UBB13&Number=45685"}, {"name": "raidenftpd-directory-traversal(20368)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/20368"}, {"name": "15037", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/15037"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-1480", "datePublished": "2005-05-11T04:00:00", "dateReserved": "2005-05-11T00:00:00", "dateUpdated": "2017-07-10T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}