CVE-2013-5655 Information

Description

Directory traversal vulnerability in the FTP server in YingZhi Python Programming Language for iOS 1.9 allows remote attackers to read and possibly write arbitrary files via a .. (dot dot) in the default URI.

Reference

http://osvdb.org/96719 http://www.openwall.com/lists/oss-security/2013/08/29/8 http://www.openwall.com/lists/oss-security/2013/08/30/2 http://www.securityfocus.com/bid/62074