Buffy 'comb' Command Directory Traversal Vulnerability Network Vulnerability

Summary

Buffy is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to download and delete local files in the context of the webserver process which may aid in further attacks. Buffy 1.3 is vulnerable prior versions may also be affected.

References

http://www.smotricz.com/opensource/buffy/Buffy.zip
https://www.securityfocus.com/bid/44577

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

WarFTPD Multiple Format String Vulnerabilities
TypSoft FTP STOR/RETR DoS
Freefloat FTP Server Directory Directory Traversal Vulnerability
pyftpdlib FTP Server Multiple Directory Traversal Vulnerabilities
pyftpd Multiple Vulnerabilities

Take action and discover your vulnerabilities