CVE-2020-20277

CRITICAL

Troglobit Uftpd < 2.10 - Path Traversal

Title source: rule

Description

There are multiple unauthenticated directory traversal vulnerabilities in different FTP commands in uftpd FTP server versions 2.7 to 2.10 due to improper implementation of a chroot jail in common.c's compose_abspath function that can be abused to read or write to arbitrary files on the filesystem, leak process memory, or potentially lead to remote code execution.

Exploits (1)

exploitdb WORKING POC

by Aaron Esau · textremotelinux

https://www.exploit-db.com/exploits/51000

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/167908/uftpd-2.10-Directory-Traversal.html

[Third Party Advisory] https://arinerron.com/blog/posts/6

[Patch, Third Party Advisory] https://github.com/troglobit/uftpd/commit/455b47d3756aed162d2d0ef7f40b549f3b5b30fe

Scores

CVSS v3 9.8

EPSS 0.3935

EPSS Percentile 97.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-22

Status published

Products (1)

troglobit/uftpd 2.7 - 2.10

Published Dec 18, 2020

Tracked Since Feb 18, 2026