QID 150742

WinSock File Transfer Protocol, or WS_FTP, is a secure file transfer software package produced by Ipswitch, Inc.

WS_FTP has been identified as having multiple security vulnerabilities.

CVE-2023-40044: In WS_FTP Server, a pre-authenticated attacker could leverage a .NET deserialization vulnerability in the Ad Hoc Transfer module to execute remote commands on the underlying WS_FTP Server operating system.
CVE-2023-42657: In WS_FTP Server, a directory traversal vulnerability was discovered. An attacker could leverage this vulnerability to perform file operations (delete, rename, rmdir, mkdir) on files and folders outside of their authorized WS_FTP folder path. Attackers could also escape the context of the WS_FTP Server file structure and perform the same level of operations (delete, rename, rmdir, mkdir) on file and folder locations on the underlying operating system.
CVE-2023-40045: In WS_FTP Server, a reflected cross-site scripting (XSS) vulnerability exists in WS_FTP Server's Ad Hoc Transfer module. An attacker could leverage this vulnerability to target WS_FTP Server users with a specialized payload which results in the execution of malicious JavaScript within the context of the victim's browser.

Affected Versions:
WS_FTP prior to version 8.7.4
WS_FTP from 8.8.0 to 8.8.1

QID Detection Logic:
This QID examines the date stamps of WS_FTP files to identify potential vulnerabilities in the WS_FTP application running on the target server.

This vulnerability, if exploited, allows an unauthorized attacker to manipulate files and folders beyond their authorized WS_FTP folder path, execute remote commands on the servers operating system, or run malicious JavaScript in the victims browser without authentication.