CVE-2010-4154

CRITICAL

9.3

CVSS Severity Score

EPSS Score0.0360%

EPSS Percentile1.19th

PublishedNov 3, 2010

Last ModifiedApr 29, 2026

Vulnerability Description

Directory traversal vulnerability in Rhino Software, Inc. FTP Voyager 15.2.0.11, and possibly earlier, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename.

Affected Platforms (CPE)

📦

Rhinosoft

Ftp Voyager

<= 15.2.0.11

📦

Rhinosoft

Ftp Voyager

= 15.0.0.0

📦

Rhinosoft

Ftp Voyager

= 15.0.0.1

📦

Rhinosoft

Ftp Voyager

= 15.0.0.2

📦

Rhinosoft

Ftp Voyager

= 15.0.0.3

📦

Rhinosoft

Ftp Voyager

= 15.1.0.0

📦

Rhinosoft

Ftp Voyager

= 15.1.0.1

📦

Rhinosoft

Ftp Voyager

= 15.1.0.2

📦

Rhinosoft

Ftp Voyager

= 15.1.0.3

📦

Rhinosoft

Ftp Voyager

= 15.1.0.4

📦

Rhinosoft

Ftp Voyager

= 15.2.0.0

📦

Rhinosoft

Ftp Voyager

= 15.2.0.2

📦

Rhinosoft

Ftp Voyager

= 15.2.0.4

📦

Rhinosoft

Ftp Voyager

= 15.2.0.6

📦

Rhinosoft

Ftp Voyager

= 15.2.0.8

📦

Rhinosoft

Ftp Voyager

= 15.2.0.9

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=128654931101920&w=2

🔗 http://packetstormsecurity.org/1010-exploits/ftpvoyager-traversal.txt

🔗 http://secunia.com/advisories/41719

🔗 http://www.htbridge.ch/advisory/directory_traversal_vulnerability_in_ftp_voyager.html

🔗 http://www.osvdb.org/68607

🔗 http://www.securityfocus.com/bid/43869

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/62392

🔗 http://marc.info/?l=bugtraq&m=128654931101920&w=2

Vulnerability Description

Affected Platforms (CPE)

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

References & Advisories

Related Vulnerabilities