FTP Service Information Disclosure Vulnerability in 3Com 3CDaemon 2.0 Revision 10

FTP Service Information Disclosure Vulnerability in 3Com 3CDaemon 2.0 Revision 10

CVE-2005-0278 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The FTP service in 3Com 3CDaemon 2.0 revision 10 allows remote attackers to gain sensitive information via a cd command that contains an MS-DOS device name, which reveals the installation path in an error message.

Learn more about our Web Application Penetration Testing UK.