CyberSec.Space Logo
Back to CVE Browser

CVE-2008-5175

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0850%
EPSS Percentile23.96th
PublishedNov 19, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Directory traversal vulnerability in the FTP client in AceFTP Freeware 3.80.3 and AceFTP Pro 3.80.3 allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) in a response to a LIST command, a related issue to CVE-2002-1345.

Affected Platforms (CPE)

πŸ“¦
Visicommedia

Aceftp

= 3.80.3
πŸ“¦
Visicommedia

Aceftp

= 3.80.3

References & Advisories

πŸ”— http://secunia.com/advisories/30792
πŸ”— http://vuln.sg/aceftp3803-en.html
πŸ”— http://www.securityfocus.com/bid/29989
πŸ”— http://www.vupen.com/english/advisories/2008/1954/references
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/43400
πŸ”— http://secunia.com/advisories/30792
πŸ”— http://vuln.sg/aceftp3803-en.html
πŸ”— http://www.securityfocus.com/bid/29989

Related Vulnerabilities

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...

CVE-2026-48853

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc all...

CVE-2026-487237.8

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36...