Arbitrary File Read Vulnerability in Gummy Bear Studios FTP Drive + HTTP Server 1.0.4 and Earlier

Arbitrary File Read Vulnerability in Gummy Bear Studios FTP Drive + HTTP Server 1.0.4 and Earlier

CVE-2013-3922 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:N/A:N

Directory traversal vulnerability in Gummy Bear Studios FTP Drive + HTTP Server 1.0.4 and earlier allows remote attackers to read arbitrary files via a ..%2f (encoded dot dot slash) in a GET request.

Learn more about our Cis Benchmark Audit For Apple Ios.