Unrated severityNVD Advisory· Published Apr 29, 2014· Updated May 6, 2026

CVE-2014-1843

Description

Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to obtain the property information of an arbitrary home folder via a Properties action with a .. (dot dot) in the src parameter.

Affected products

South River Technologies/Titan Ftp Server4 versions
cpe:2.3:a:southrivertech:titan_ftp_server:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:southrivertech:titan_ftp_server:*:*:*:*:*:*:*:*range: <=10.40
- cpe:2.3:a:southrivertech:titan_ftp_server:10.01.1740:*:*:*:*:*:*:*
- cpe:2.3:a:southrivertech:titan_ftp_server:10.0.1733:*:*:*:*:*:*:*
- cpe:2.3:a:southrivertech:titan_ftp_server:10.30:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/31579nvdExploit
archives.neohapsis.com/archives/fulldisclosure/2014-02/0092.htmlnvd
www.osvdb.org/103197nvd
www.securityfocus.com/bid/65469nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000