SnugServer FTP Service Directory Traversal Vulnerability
BID:12387
Info
SnugServer FTP Service Directory Traversal Vulnerability
| Bugtraq ID: | 12387 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 27 2005 12:00AM |
| Updated: | Jan 27 2005 12:00AM |
| Credit: | Discovery of this vulnerability is credited to muts <[email protected]> |
| Vulnerable: |
SnugServer SnugServer 3.0.0.40 |
| Not Vulnerable: | |
Discussion
SnugServer FTP Service Directory Traversal Vulnerability
It is reported that the SnugServer FTP Service is susceptible to a directory traversal vulnerability.
It is conjectured that this vulnerability allows a remote attacker to read and write files outside of the FTP document root directory. An attacker may read and write files with the privileges of the FTP server process.
It is reported that the SnugServer FTP Service is susceptible to a directory traversal vulnerability.
It is conjectured that this vulnerability allows a remote attacker to read and write files outside of the FTP document root directory. An attacker may read and write files with the privileges of the FTP server process.
Exploit / POC
SnugServer FTP Service Directory Traversal Vulnerability
No exploit is required.
No exploit is required.
Solution / Fix
SnugServer FTP Service Directory Traversal Vulnerability
Solution:
It is reported that the vendor has addressed this vulnerability. This is not confirmed; customers are advised to contact the vendor for further details regarding obtaining and applying appropriate updates.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
It is reported that the vendor has addressed this vulnerability. This is not confirmed; customers are advised to contact the vendor for further details regarding obtaining and applying appropriate updates.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
SnugServer FTP Service Directory Traversal Vulnerability
References:
References:
- SnugServer Homepage (SnugServer)