Unrated severityNVD Advisory· Published Nov 3, 2010· Updated Apr 29, 2026
CVE-2010-4154
CVE-2010-4154
Description
Directory traversal vulnerability in Rhino Software, Inc. FTP Voyager 15.2.0.11, and possibly earlier, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename.
Affected products
16cpe:2.3:a:rhinosoft:ftp_voyager:*:*:*:*:*:*:*:*+ 15 more
- cpe:2.3:a:rhinosoft:ftp_voyager:*:*:*:*:*:*:*:*range: <=15.2.0.11
- cpe:2.3:a:rhinosoft:ftp_voyager:15.0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.0.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.0.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.2.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.2.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:rhinosoft:ftp_voyager:15.2.0.9:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- secunia.com/advisories/41719nvdVendor Advisory
- marc.infonvd
- packetstormsecurity.org/1010-exploits/ftpvoyager-traversal.txtnvd
- www.htbridge.ch/advisory/directory_traversal_vulnerability_in_ftp_voyager.htmlnvd
- www.osvdb.org/68607nvd
- www.securityfocus.com/bid/43869nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/62392nvd
News mentions
0No linked articles in our index yet.