|
Family: FTP --> Category: attack
Golden FTP Server Directory Traversal Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks for directory traversal vulnerability in Golden FTP Server
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote FTP server is affected by a directory traversal flaw.
Description :
The version of Golden FTP Server installed on the remote host is prone
to a directory traversal attack. Specifically, a possible hacker can read
files located outside a share with '\\..' sequences subject to the
rights of the FTP server process.
See also :
http://archives.neohapsis.com/archives/bugtraq/2005-05/0033.html
Solution :
Use an FTP proxy to filter malicious character sequences, place the
FTP root on a separate drive, or restrict access using NTFS.
Threat Level:
Low / CVSS Base Score : 2
(AV:R/AC:L/Au:R/C:C/A:N/I:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|