Directory Traversal Vulnerability in Serv-U FTP Server before 11.1.0.5 Allows Remote Authenticated Users to Access and Manipulate Arbitrary Files and Directories

Directory Traversal Vulnerability in Serv-U FTP Server before 11.1.0.5 Allows Remote Authenticated Users to Access and Manipulate Arbitrary Files and Directories

CVE-2011-4800 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

Directory traversal vulnerability in Serv-U FTP Server before 11.1.0.5 allows remote authenticated users to read and write arbitrary files, and list and create arbitrary directories, via a "..:/" (dot dot colon forward slash) in the (1) list, (2) put, or (3) get commands.

Learn more about our Cis Benchmark Audit For Server Software.