Unrated severityNVD Advisory· Published Dec 31, 2003· Updated Apr 16, 2026

CVE-2003-1299

Description

Directory traversal vulnerability in Baby FTP Server 1.2, and possibly other versions before May 31, 2003 allows remote authenticated users to list arbitrary directories and possibly read files via "..." (triple dot) manipulations to the CWD command.

Affected products

Pablo Software Solutions/Baby Ftp Server
cpe:2.3:a:pablo_software_solutions:baby_ftp_server:1.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.pablosoftwaresolutions.com/html/baby_ftp_server.htmlnvdPatch
packetstormsecurity.org/0305-exploits/baby.txtnvdExploit
www.osvdb.org/24538nvd
www.securityfocus.com/bid/7749nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000