Vulnerability Database

308,820

Total vulnerabilities in the database

CVE-2001-1109

Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal directory contents via a .. (dot dot) in the (1) LIST, (2) QUOTE SIZE, and (3) QUOTE MDTM commands.

Published: Sep 12, 2001
Updated: Nov 9, 2025
CVE: CVE-2001-1109
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
khamil_landross_and_zack_jones / eftp	2.0.7.337	2.0.7.337.x

http://www.eftp.org/releasehistory.html
http://www.securityfocus.com/archive/1/213647
http://www.securityfocus.com/bid/3331
http://www.securityfocus.com/bid/3333
https://exchange.xforce.ibmcloud.com/vulnerabilities/7113
https://exchange.xforce.ibmcloud.com/vulnerabilities/7114

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo