CVE-2001-0934

Cooolsoft PowerFTP Server 2.03 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0934. PoCs published by alt3kx.

AI-analyzed exploit summary This repository documents CVE-2001-0934, an information disclosure vulnerability in Cooolsoft PowerFTP Server 2.03 where the 'pwd' command reveals the server's root path. It includes references to external advisories but lacks functional exploit code.

Description

Cooolsoft PowerFTP Server 2.03 allows remote attackers to obtain the physical path of the server root via the pwd command, which lists the full pathname.

Exploits (1)

nomisec WRITEUP

by alt3kx · poc

https://github.com/alt3kx/CVE-2001-0934

View Code ZIP pw:eip

This repository documents CVE-2001-0934, an information disclosure vulnerability in Cooolsoft PowerFTP Server 2.03 where the 'pwd' command reveals the server's root path. It includes references to external advisories but lacks functional exploit code.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Cooolsoft PowerFTP Server 2.03

No auth needed

Prerequisites: Network access to the PowerFTP server

MITRE ATT&CK

T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=100698397818175&w=2

Scores

EPSS 0.0444

EPSS Percentile 90.2%

Details

Status published

Products (1)

cooolsoft/powerftp 2.03

Published Nov 28, 2001

Tracked Since Feb 18, 2026