CVEブラウザに戻る

CVE-2006-1383

MEDIUM

4.0

CVSS Severity Score

EPSS Score0.0830%

EPSS Percentile27.42th

Published2006年3月24日

Last Modified2026年4月16日

Vulnerability Description

Directory traversal vulnerability in Baby FTP Server (BabyFTP) 1.24 allows remote authenticated users to determine existence of files outside the intended document root via unspecified manipulations, which generate different error messages depending on whether a file exists or not.

Affected Platforms (CPE)

📦

Pablo Software Solutions

Baby Ftp Server

= 1.24

References & Advisories

🔗 http://secunia.com/advisories/19338

🔗 http://www.osvdb.org/24057

🔗 http://www.securityfocus.com/bid/17205

🔗 http://www.vupen.com/english/advisories/2006/1069

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/25413

🔗 http://secunia.com/advisories/19338

🔗 http://www.osvdb.org/24057

🔗 http://www.securityfocus.com/bid/17205

関連する脆弱性情報

CVE-2002-220910.0

Unspecified "security vulnerability" in Baby FTP Server versions before November 7, 2002 has unknown impact and attack vectors.

CVE-2003-13005.0

Baby FTP Server (BabyFTP) 1.2, and possibly other versions before May 31, 2003, allows remote attackers to cause a denial of servi...

CVE-2003-12994.0

Directory traversal vulnerability in Baby FTP Server 1.2, and possibly other versions before May 31, 2003 allows remote authentica...

CVE-2006-502510.0

Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.2 have unknown impact and attack ve...