CVE-2011-3171 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2011-3171 Interim 1 13 2023-12-09T01:47:58Z current 2021-05-30T12:59:26Z 2023-12-09T01:47:58Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2011-3171 Directory traversal vulnerability in pure-FTPd 1.0.22 and possibly other versions, when running on SUSE Linux Enterprise Server and possibly other operating systems, when the Netware OES remote server feature is enabled, allows local users to overwrite arbitrary files via unknown vectors. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/6J4GAFM42CIFHGAHHSCAROQFGJSUPERI/#6J4GAFM42CIFHGAHHSCAROQFGJSUPERI E-Mail link for SUSE-SU-2011:1028-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 pure-ftpd-1.0.22-3.13.1 pure-ftpd-1.0.22-3.15.1 pure-ftpd-1.0.22-3.19.1 pure-ftpd-1.0.22-3.25.1 pure-ftpd-1.0.22-3.13.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA pure-ftpd-1.0.22-3.15.1 as a component of SUSE Linux Enterprise Server 11 SP2 pure-ftpd-1.0.22-3.19.1 as a component of SUSE Linux Enterprise Server 11 SP3 pure-ftpd-1.0.22-3.25.1 as a component of SUSE Linux Enterprise Server 11 SP4 Directory traversal vulnerability in pure-FTPd 1.0.22 and possibly other versions, when running on SUSE Linux Enterprise Server and possibly other operating systems, when the Netware OES remote server feature is enabled, allows local users to overwrite arbitrary files via unknown vectors. CVE-2011-3171 SUSE Linux Enterprise Server 11 SP1-TERADATA:pure-ftpd-1.0.22-3.13.1 SUSE Linux Enterprise Server 11 SP2:pure-ftpd-1.0.22-3.15.1 SUSE Linux Enterprise Server 11 SP3:pure-ftpd-1.0.22-3.19.1 SUSE Linux Enterprise Server 11 SP4:pure-ftpd-1.0.22-3.25.1 low 3.6 AV:L/AC:L/Au:N/C:N/I:P/A:P