Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> FTP >> Farmers WIFE FTP Server Directory Traversal Vulnerability


Vulnerability Assessment Details

Farmers WIFE FTP Server Directory Traversal Vulnerability

Vulnerability Assessment Summary
Checks for directory traversal vulnerability in Farmers WIFE FTP server

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote ftp server is affected by a directory traversal flaw.

Description :

The remote host appears to be running Farmers WIFE, a commercial
facilities, scheduling, and asset management package targeted at the
media industry.

The version of Farmers WIFE installed on the remote host includes an
FTP server that reportedly is vulnerable to directory traversal
attacks. A user can leverage this issue to read and write to files
outside the ftp root. Note that the application runs with SYSTEM
rights under Windows.

See also :

http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041356.html

Solution :

Upgrade to Farmers WIFE 4.4 SP3 or later.

Network Security Threat Level:

Low / CVSS Base Score : 2.3
(AV:R/AC:L/Au:NR/C:N/I:P/A:N/B:N)

Networks Security ID: 16321

Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security

Cables, Connectors


VINTAGE dec, digital equipment co. expansion card nice Samsung processor  picture

VINTAGE dec, digital equipment co. expansion card nice Samsung processor

$150.00



DEC Samsung Electronics Alpha 21264B EV67 KP21264B-0833WWN Processor CPU Vintage picture

DEC Samsung Electronics Alpha 21264B EV67 KP21264B-0833WWN Processor CPU Vintage

$43.99



VINTAGE SCSI ADAPTER BOARD FOR USE IN DEC VAXSTATION 3100 & MICROVAX 3100  picture

VINTAGE SCSI ADAPTER BOARD FOR USE IN DEC VAXSTATION 3100 & MICROVAX 3100

$129.00



VINTAGE DEC DD11-DF 9 SLOT EXPANSION BACKPLANE FOR DEC PDP11 UNIBUS SYSTEMS picture

VINTAGE DEC DD11-DF 9 SLOT EXPANSION BACKPLANE FOR DEC PDP11 UNIBUS SYSTEMS

$195.00



LOT of 2 - Vintage DEC Digital DCJ11 COLLECTABLE WHITE CPUs *UNTESTED* picture

LOT of 2 - Vintage DEC Digital DCJ11 COLLECTABLE WHITE CPUs *UNTESTED*

$105.00



Vintage DEC Digital DELNI Local Network Interconnect 9-Port AUi Ethernet Hub picture

Vintage DEC Digital DELNI Local Network Interconnect 9-Port AUi Ethernet Hub

$44.95



Vintage DEC Digital RZ23 104MB Low Profile Hard Drive Option RZ23-E picture

Vintage DEC Digital RZ23 104MB Low Profile Hard Drive Option RZ23-E

$23.09



VINTAGE DEC DIGITAL H3104 SERIAL INTERFACE 36PIN TO 8MMJ PORT picture

VINTAGE DEC DIGITAL H3104 SERIAL INTERFACE 36PIN TO 8MMJ PORT

$39.98



VINTAGE DEC DIGITAL EQUIPMENT 5011698 C  H325 TEST CONNECTOR MODULE picture

VINTAGE DEC DIGITAL EQUIPMENT 5011698 C H325 TEST CONNECTOR MODULE

$11.00



VINTAGE DEC DIGITAL DECPC 54-23522 5023521-01 MOTHERBOARD W/ I486 CPU/MEMORY 486 picture

VINTAGE DEC DIGITAL DECPC 54-23522 5023521-01 MOTHERBOARD W/ I486 CPU/MEMORY 486

$89.00



Discussions

No Discussions have been posted on this vulnerability.