Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> FTP >> War FTP Daemon Directory Traversal


Vulnerability Assessment Details

War FTP Daemon Directory Traversal

Vulnerability Assessment Summary
WarFTPd Directory Traversal

Detailed Explanation for this Vulnerability Assessment

The version of WarFTPd running on this host contains a vulnerability that
may permit a potential intruder to gain read access to directories and files
outside of the ftp root. By sending a specially crafted 'dir' command,
the server may disclose an arbitrary directory.

Solution:
Visit the following link and download the latest version of WarFTPd:

ftp://ftp.jgaa.com/pub/products/Windows/WarFtpDaemon/

Risk factor: Low

Networks Security ID: 2444

Vulnerability Assessment Copyright: This script is Copyright (C) 2003 Digital Defense, Inc.

Cables, Connectors

Cisco 1721 3-Port 10/100 Wired Router with T1 WIC card
$40.0
Cisco 1721 3-Port 10/100 Wired Router with T1 WIC card picture2 Cisco VIC2-2E/M 2-Port Ear and Mouth Voice Interface Cards Sealed In Box
$15.0
2 Cisco VIC2-2E/M 2-Port Ear and Mouth Voice Interface Cards Sealed In Box picture4pcs Cisco 72-3383-01 Rev A2 Serial Cable Console RJ-45 (M) DB-9 (F) 6' New
$15.0
4pcs Cisco 72-3383-01 Rev A2  Serial Cable Console RJ-45 (M) DB-9 (F) 6'   New picture6 pieces Cisco WIC-1DSU-T1 1-Port T1 CSU/DSU WAN Interface Card Genuine
$40.0
6 pieces Cisco WIC-1DSU-T1 1-Port T1 CSU/DSU WAN Interface Card   Genuine picture


Discussions

No Discussions have been posted on this vulnerability.