DWG Windows FTP Server Authentication Bypass Vulnerability
BID:39601
Info
DWG Windows FTP Server Authentication Bypass Vulnerability
| Bugtraq ID: | 39601 |
| Class: | Access Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 09 2010 12:00AM |
| Updated: | Apr 09 2010 12:00AM |
| Credit: | chap0 |
| Vulnerable: |
DWG Software Windows FTP Server 0 |
| Not Vulnerable: | |
Discussion
DWG Windows FTP Server Authentication Bypass Vulnerability
DWG Windows FTP Server is prone to an authentication-bypass vulnerability.
An attacker can exploit this issue to access the affected FTP server without proper authentication. Successful exploits may lead to other attacks.
DWG Windows FTP Server is prone to an authentication-bypass vulnerability.
An attacker can exploit this issue to access the affected FTP server without proper authentication. Successful exploits may lead to other attacks.
Exploit / POC
DWG Windows FTP Server Authentication Bypass Vulnerability
This issue can be leveraged with standard networking tools.
The following example is available:
This issue can be leveraged with standard networking tools.
The following example is available:
Solution / Fix
DWG Windows FTP Server Authentication Bypass Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
DWG Windows FTP Server Authentication Bypass Vulnerability
References:
References:
- DWG Windows FTP Server - Homepage (DWG Software)