Description

IIS FTP servers may allow a remote attacker to read or delete files on the server, even if they have "No Access" permissions.

Remediation

References

CVE-1999-0777

Related Vulnerabilities

WordPress Plugin Testimonial WordPress-AP Custom Testimonial includes Backdoor [Only if downloaded via the vendor website] (1.4.6)

Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-40316)

WordPress Plugin WooCommerce Product Feed for Google, Facebook, eBay and Many More Cross-Site Scripting (3.1.14)

Liferay DXP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-33945)

Dot CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8600)

Severity

High

Classification

CVE-1999-0777 CWE-264

Tags

Missing Update Known Vulnerabilities