CVE-2010-4154

CRITICAL

9.3

CVSS Severity Score

EPSS Score0.0360%

EPSS Percentile1.19th

Published2010年11月3日

Last Modified2026年4月29日

Vulnerability Description

Directory traversal vulnerability in Rhino Software, Inc. FTP Voyager 15.2.0.11, and possibly earlier, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename.

Affected Platforms (CPE)

📦

Rhinosoft

Ftp Voyager

<= 15.2.0.11

📦

Rhinosoft

Ftp Voyager

= 15.0.0.0

📦

Rhinosoft

Ftp Voyager

= 15.0.0.1

📦

Rhinosoft

Ftp Voyager

= 15.0.0.2

📦

Rhinosoft

Ftp Voyager

= 15.0.0.3

📦

Rhinosoft

Ftp Voyager

= 15.1.0.0

📦

Rhinosoft

Ftp Voyager

= 15.1.0.1

📦

Rhinosoft

Ftp Voyager

= 15.1.0.2

📦

Rhinosoft

Ftp Voyager

= 15.1.0.3

📦

Rhinosoft

Ftp Voyager

= 15.1.0.4

📦

Rhinosoft

Ftp Voyager

= 15.2.0.0

📦

Rhinosoft

Ftp Voyager

= 15.2.0.2

📦

Rhinosoft

Ftp Voyager

= 15.2.0.4

📦

Rhinosoft

Ftp Voyager

= 15.2.0.6

📦

Rhinosoft

Ftp Voyager

= 15.2.0.8

📦

Rhinosoft

Ftp Voyager

= 15.2.0.9

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=128654931101920&w=2

🔗 http://packetstormsecurity.org/1010-exploits/ftpvoyager-traversal.txt

🔗 http://secunia.com/advisories/41719

🔗 http://www.htbridge.ch/advisory/directory_traversal_vulnerability_in_ftp_voyager.html

🔗 http://www.osvdb.org/68607

🔗 http://www.securityfocus.com/bid/43869

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/62392

🔗 http://marc.info/?l=bugtraq&m=128654931101920&w=2

Vulnerability Description

Affected Platforms (CPE)

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

Ftp Voyager

References & Advisories

関連する脆弱性情報