CVE-2015-7603

Konica Minolta FTP Utility 1.0 - Path Traversal

Title source: llm

Description

Directory traversal vulnerability in Konica Minolta FTP Utility 1.0 allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in a RETR command.

Exploits (2)

metasploit WORKING POC

by Jay Turla, James Fitts · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/ftp/konica_ftp_traversal.rb

View Code ZIP pw:eip

exploitdb WORKING POC

by shinnai · phpremotewindows

https://www.exploit-db.com/exploits/38260

View Code ZIP pw:eip

References (2)

[Exploit] http://shinnai.altervista.org/exploits/SH-0024-20150922.html

[Exploit] https://www.exploit-db.com/exploits/38260/

Scores

EPSS 0.7277

EPSS Percentile 98.8%

Classification

CWE

CWE-22

Status draft

Affected Products (1)

konicaminolta/ftp_utility

Timeline

Published Sep 29, 2015

Tracked Since Feb 18, 2026