PlatinumFTPServer 1.0.6 – Directory Traversal-安全小百科

PlatinumFTPServer 1.0.6 – Directory Traversal

漏洞ID	1053675	漏洞类型
发布时间	2003-01-07	更新时间	2003-01-07
CVE编号	N/A	CNNVD-ID	N/A
漏洞平台	Windows	CVSS评分	N/A

|漏洞来源

https://www.exploit-db.com/exploits/22136

|漏洞详情

漏洞细节尚未披露

|漏洞EXP

source: http://www.securityfocus.com/bid/6554/info

PlatinumFTPserver is an FTP server for Microsoft Windows systems. It is commercially available, and distributed by PlatinumFTP.

A directory traversal vulnerability has been reported in PlatinumFTPserver. The program does not sufficiently handle dot-dot-slash input, which could result in an attacker gaining access to unauthorized resources. 

dir ..directory

where directory represents a directory outside the FTP root.

del ..file

where file represents a file outside the FTP root.

相关推荐: Netscape iPlanet iCal ‘iplncal.sh’ Permissions Vulnerability

Netscape iPlanet iCal ‘iplncal.sh’ Permissions Vulnerability 漏洞ID 1103795 漏洞类型 Origin Validation Error 发布时间 2000-10-10 更新时间 2000-1…

文章版权归作者所有，未经允许请勿转载。

THE END