Summary
Detail | |||
---|---|---|---|
Vendor | Iglooftp | First view | 2005-01-10 |
Product | Iglooftp | Last view | 2005-01-10 |
Version | Type | Application | |
Update | |||
Edition | |||
Language | |||
Sofware Edition | |||
Target Software | |||
Target Hardware | |||
Other |
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
CPE Name | Affected CVE |
---|---|
cpe:2.3:a:iglooftp:iglooftp:0.6.1:*:*:*:*:*:*:* | 2 |
Related : CVE
Date | Alert | Description | |
---|---|---|---|
5 | 2005-01-10 | CVE-2004-1277 | The download_selection_recursive() function in ftplist.c for IglooFTP 0.6.1 allows remote malicious FTP servers to overwrite arbitrary files via filenames that contain / (slash) characters. |
2.1 | 2005-01-10 | CVE-2004-1276 | IglooFTP 0.6.1, when recursively uploading a directory, allows local users to overwrite the files that are being uploaded by creating temporary files with names generated by the tmpnam function, before the files are opened by IglooFTP. |
Open Source Vulnerability Database (OSVDB)
id | Description |
---|---|
12448 | IglooFTP download_selection_recursive() Function Arbitrary File Manipulation |
12447 | IglooFTP Recursive Upload Arbitrary File Write |