What is CVE-2011-3171?

CVE-2011-3171 is a vulnerability in Pureftpd Pure-ftpd, classified under Path Traversal. Published 2011-11-04.

Is CVE-2011-3171 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Path Traversal in Pureftpd Pure-ftpd

CVE-2011-3171

Directory traversal vulnerability in pure-FTPd 1.0.22 and possibly other versions, when running on SUSE Linux Enterprise Server and possibly other operating systems, when the Netware OES remote server feature is enabled, allows local users…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.000 (1.5th percentile) — read the EPSS interpretation.

Affected products

Pureftpd Pure-ftpd — versions 0.90, 0.91, 0.92
Suse Linux_enterprise_desktop — versions 10, 11
Suse Linux_enterprise_server — versions 10, 11
N/a — versions n/a

Weakness classification (CWE)

CWE-22 — Path Traversal

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

49541 (vdb-entry, x_refsource_BID)
SUSE-SU-2011:1028 (vendor-advisory, x_refsource_SUSE)
pureftpd-oes-directory-traversal(69686) (vdb-entry, x_refsource_XF)
SUSE-SU-2011:1029 (vendor-advisory, x_refsource_SUSE)

Frequently asked questions

What is CVE-2011-3171?: CVE-2011-3171 is a vulnerability in Pureftpd Pure-ftpd, classified under Path Traversal. Published 2011-11-04.
Is CVE-2011-3171 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.