NuytsTech Security

CVE-2019-9648

by ·

An issue was discovered in the SFTP Server component in Core FTP 2.0 Build 674. A directory traversal vulnerability exists using the SIZE command along with a …. substring, allowing an attacker to enumerate file existence based on the returned information.

Date published : 2019-03-22

http://www.securityfocus.com/bid/107446

http://www.coreftp.com/forums/viewtopic.php?f=15&t=4022509

Tags: