返回 CVE 浏览器

CVE-2006-1383

MEDIUM

4.0

CVSS Severity Score

EPSS Score0.0830%

EPSS Percentile27.42th

Published2006年3月24日

Last Modified2026年4月16日

Vulnerability Description

Directory traversal vulnerability in Baby FTP Server (BabyFTP) 1.24 allows remote authenticated users to determine existence of files outside the intended document root via unspecified manipulations, which generate different error messages depending on whether a file exists or not.

Affected Platforms (CPE)

📦

Pablo Software Solutions

Baby Ftp Server

= 1.24

References & Advisories

🔗 http://secunia.com/advisories/19338

🔗 http://www.osvdb.org/24057

🔗 http://www.securityfocus.com/bid/17205

🔗 http://www.vupen.com/english/advisories/2006/1069

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/25413

🔗 http://secunia.com/advisories/19338

🔗 http://www.osvdb.org/24057

🔗 http://www.securityfocus.com/bid/17205

相关漏洞威胁

CVE-2002-220910.0

Unspecified "security vulnerability" in Baby FTP Server versions before November 7, 2002 has unknown impact and attack vectors.

CVE-2003-13005.0

Baby FTP Server (BabyFTP) 1.2, and possibly other versions before May 31, 2003, allows remote attackers to cause a denial of servi...

CVE-2003-12994.0

Directory traversal vulnerability in Baby FTP Server 1.2, and possibly other versions before May 31, 2003 allows remote authentica...

CVE-2006-446110.0

Paessler IPCheck Server Monitor before 5.3.3.639/640 does not properly implement a "list of acceptable host IP addresses in the pr...