CVE-2006-3015

Argument injection vulnerability in WinSCP 3.8.1 build 328 allows remote attackers to upload or download arbitrary files via encoded spaces and double-quote characters in a scp or sftp URI.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:winscp:winscp:3.8.1_build328:*:*:*:*:*:*:*

Information

Published : 2006-06-14 08:06

Updated : 2017-07-19 18:31


NVD link : CVE-2006-3015

Mitre link : CVE-2006-3015


JSON object : View

CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')

Advertisement

dedicated server usa

Products Affected

winscp

  • winscp