CVE-2010-3867

EPSS 0.59%

Published: 11/9/2010Modified: 4/28/2026

Also known as:DEBIAN-CVE-2010-3867

Description

Multiple directory traversal vulnerabilities in the mod_site_misc module in ProFTPD before 1.3.3c allow remote authenticated users to create directories, delete directories, create symlinks, and modify file timestamps via directory traversal sequences in a (1) SITE MKDIR, (2) SITE RMDIR, (3) SITE SYMLINK, or (4) SITE UTIME command.

Affected packages (1)

Debian/proftpd-dfsgfrom 0, < 1.3.3a-4

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-3867