Description
Directory traversal vulnerability in War FTP 1.67.04 allows remote attackers to list directory contents and possibly read files via a "dir *./../.." command.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by se00020 · textremotewindows
https://www.exploit-db.com/exploits/20661
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/874
Various Sources x_refsource_confirm
http://support.jgaa.com/?cmd=ShowArticle&ID=31
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=98390925726814&w=2
Exploit, Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/2444
Scores
EPSS
0.0431
EPSS Percentile
89.0%
Details
Status
published
Products (1)
jarle_aase/war_ftpd
1.67b04
Published
May 03, 2001
Tracked Since
Feb 18, 2026