Guild FTPD File Existence Disclosure Vulnerability
BID:1452
Info
Guild FTPD File Existence Disclosure Vulnerability
| Bugtraq ID: | 1452 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jul 08 2000 12:00AM |
| Updated: | Jul 08 2000 12:00AM |
| Credit: | Discovered by and posted to Bugtraq on July 8, 2000 by Andrew Lewis <[email protected]>. |
| Vulnerable: |
DrPhibez and Nitro187 Guild FTPD 0.9.7 |
| Not Vulnerable: | |
Discussion
Guild FTPD File Existence Disclosure Vulnerability
Guild Ftpd will not send files outside of the ftp root when they are specified by the ../ string in the path of the GET request. However due to the difference in the error messages it is able to determine if the file requested exists. The error message "Download failed" appears if the requested file exists and "Access denied" if it does not.
Guild Ftpd will not send files outside of the ftp root when they are specified by the ../ string in the path of the GET request. However due to the difference in the error messages it is able to determine if the file requested exists. The error message "Download failed" appears if the requested file exists and "Access denied" if it does not.
Exploit / POC
Guild FTPD File Existence Disclosure Vulnerability
ftp> get ../filename
>PORT command successful.
>Opening ascii mode data connection for \../filename.
>Download failed.
ftp> get ../filename
>PORT command successful.
>Opening ascii mode data connection for \../filename.
>Download failed.
Solution / Fix
Guild FTPD File Existence Disclosure Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
Guild FTPD File Existence Disclosure Vulnerability
References:
References:
- Guild FTPD Homepage (Dr.Phibez and Nitro187)