← CVECheck
HomeVulnerabilities

CVE-2003-1380 — HIGH severity vulnerability (Directory traversal vulnerability in BisonFTP Server 4 relea)

Directory traversal vulnerability in BisonFTP Server 4 release 2 allows remote attackers to (1) list directories above the root via an 'ls @../' command, or (2) list files above the root via a "mget @../FILE" command.

CVE IDCVE-2003-1380
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWECWE-22
StatusModified
Published2003-12-31
Last modified2026-04-16
DescriptionDirectory traversal vulnerability in BisonFTP Server 4 release 2 allows remote attackers to (1) list directories above the root via an 'ls @../' command, or (2) list files above the root via a "mget @../FILE" command.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →