Threat Encyclopedia

ABB.IDAL.FTP.Server.Directory.Traversal

description-logoDescription

This indicates an attack attempt against a Directory Traversal vulnerability in ABB IDAL FTP Server.
The vulnerability is due to insufficient sanitization of user-supplied inputs. A remote, authenticated attacker may navigate to arbitrary directories on the hard disk. Successful exploitation may allow a remote attacker to download and upload files.

affected-products-logoAffected Products

ABB PB610 Panel Builder 600 versions 1.91 to 2.8.0.367

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://search.abb.com/library/Download.aspx?DocumentID=3ADR010377&LanguageCode=en&DocumentPartId=&Action=Launch

CVE References

CVE-2019-7227

Telemetry logoTelemetry