Description
Directory traversal vulnerability in IoRush Software FTP Rush 1.1.3 and possibly earlier allows remote FTP servers to overwrite arbitrary files via a "..\" (dot dot backslash) in a filename.
References (2)
Core 2
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/40900
Vendor Advisory x_refsource_misc
http://www.htbridge.ch/advisory/directory_traversal_in_ftp_rush.html
Scores
EPSS
0.0152
EPSS Percentile
71.5%
Details
CWE
CWE-22
Status
published
Products (1)
ftprush/ftprush
1.1.3
Published
Aug 20, 2010
Tracked Since
Feb 18, 2026