Directory Traversal Vulnerabilities in ProFTPD Mod_site_misc Module

Directory Traversal Vulnerabilities in ProFTPD Mod_site_misc Module

CVE-2010-3867 · HIGH Severity

AV:N/AC:H/AU:S/C:C/I:C/A:C

Multiple directory traversal vulnerabilities in the mod_site_misc module in ProFTPD before 1.3.3c allow remote authenticated users to create directories, delete directories, create symlinks, and modify file timestamps via directory traversal sequences in a (1) SITE MKDIR, (2) SITE RMDIR, (3) SITE SYMLINK, or (4) SITE UTIME command.

Learn more about our User Device Pen Test.