CVE-2008-1564

Directory traversal vulnerability in Dan Costin File Transfer before 1.2f allows remote attackers to read arbitrary files via a "..\" (dot dot backslash) in the filename.
Path Traversal
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
VendorProductVersion
file-transferfile_transfer
1.2b:b
file-transferfile_transfer
1.2c:c
file-transferfile_transfer
1.2d:d
file-transferfile_transfer
1.2e:e
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/29540
http://sourceforge.net/project/shownotes.php?group_id=178021&release_id=586923
http://sourceforge.net/tracker/index.php?func=detail&aid=1829601&group_id=178021&atid=883559
http://www.securityfocus.com/bid/28453
https://exchange.xforce.ibmcloud.com/vulnerabilities/41489
http://secunia.com/advisories/29540
http://sourceforge.net/project/shownotes.php?group_id=178021&release_id=586923
http://sourceforge.net/tracker/index.php?func=detail&aid=1829601&group_id=178021&atid=883559
http://www.securityfocus.com/bid/28453
https://exchange.xforce.ibmcloud.com/vulnerabilities/41489