Wing FTP Server Versions Prior to 3.4.1 Multiple Information Disclosure Vulnerabilities
BID:39727
Info
Wing FTP Server Versions Prior to 3.4.1 Multiple Information Disclosure Vulnerabilities
| Bugtraq ID: | 39727 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 27 2010 12:00AM |
| Updated: | Apr 27 2010 12:00AM |
| Credit: | Reported by the vendor |
| Vulnerable: |
wftpserver Wing FTP Server 3.4 |
| Not Vulnerable: |
wftpserver Wing FTP Server 3.4.1 |
Discussion
Wing FTP Server Versions Prior to 3.4.1 Multiple Information Disclosure Vulnerabilities
Wing FTP Server is prone to multiple information-disclosure vulnerabilities.
Remote attackers can exploit this issue to gain access to sensitive information that may lead to further attacks.
Versions prior to Wing FTP Server 3.4.1 are vulnerable.
Wing FTP Server is prone to multiple information-disclosure vulnerabilities.
Remote attackers can exploit this issue to gain access to sensitive information that may lead to further attacks.
Versions prior to Wing FTP Server 3.4.1 are vulnerable.
Exploit / POC
Wing FTP Server Versions Prior to 3.4.1 Multiple Information Disclosure Vulnerabilities
An attacker can exploit these issues by using readily available utilities.
An attacker can exploit these issues by using readily available utilities.
Solution / Fix
Wing FTP Server Versions Prior to 3.4.1 Multiple Information Disclosure Vulnerabilities
Solution:
The vendor released an update. Please see the references for more information.
Solution:
The vendor released an update. Please see the references for more information.
References
Wing FTP Server Versions Prior to 3.4.1 Multiple Information Disclosure Vulnerabilities
References:
References:
- Wing FTP Server Homepage (Wing FTP Server)
- Wing FTP Server Changelog (Wing FTP Server)