CVE-2010-2425

high

Description

Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read or delete arbitrary files via "..//" sequences in a COMB command.

References

http://www.securityfocus.com/bid/40949

http://www.securityfocus.com/archive/1/511873/100/0/threaded

http://www.osvdb.org/65622

http://secunia.com/advisories/40237

Details

Source: Mitre, NVD

Published: 2010-06-24

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8.1

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.0053