English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2018-10916
Description:It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. A remote attacker may trick a user to use reverse mirroring on an attacker controlled FTP server, resulting in the removal of all files in the current working directory of the victim's system.
Test IDs: 1.3.6.1.4.1.25623.1.0.852352   1.3.6.1.4.1.25623.1.1.13.2018.214.01   1.3.6.1.4.1.25623.1.1.4.2019.0643.1   1.3.6.1.4.1.25623.1.0.843746   1.3.6.1.4.1.25623.1.0.852371   1.3.6.1.4.1.25623.1.1.2.2020.1756   1.3.6.1.4.1.25623.1.1.2.2019.2603   1.3.6.1.4.1.25623.1.1.2.2019.2165   1.3.6.1.4.1.25623.1.1.2.2019.2485   1.3.6.1.4.1.25623.1.1.2.2020.1259   1.3.6.1.4.1.25623.1.1.12.2018.3731.2   1.3.6.1.4.1.25623.1.1.4.2019.0642.1  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2018-10916
SuSE Security Announcement: openSUSE-SU-2019:1059 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00036.html
SuSE Security Announcement: openSUSE-SU-2019:1110 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00010.html
https://usn.ubuntu.com/3731-2/



© 1998-2025 E-Soft Inc. All rights reserved.