INFOSERVE-ADV2011-09 - zFTPServer Suite 6.0.0.52 'rmdir' Directory Traversal
Advisory:
|
zFTPServer Suite 6.0.0.52 'rmdir' Directory Traversal
|
Advisory ID:
|
INFOSERVE-ADV2011-09
|
Author:
|
Stefan Schurtz
|
Contact:
|
|
Affected Software:
|
Successfully tested on zFTPServer Suite 6.0.0.52
|
Vendor URL:
|
|
Vendor Status:
|
fixed
|
CVE-ID:
|
CVE-2011-4717
|
==========================
Vulnerability Description
==========================
Vulnerability Description
==========================
zFTPServer 'rmdir' is prone to a Directory Traversal, which makes it possible to delete directories in the system
==================
PoC-Exploit
==================
Tested on: WindowsXP (SP3)
User Permissions: Files->Read / Directories->List, Delete
=========
Solution
=========
Fixed, but no new release available, as a workaround disable "Directories->Delete"
====================
Disclosure Timeline
====================
04-Dec-2011 - informed vendor
06-Dec-2011 - fixed by vendor
10-Dec-2011 - release date of this security advisory
========
Credits
========
Vulnerabilitiy found and advisory written by the INFOSERVE security team.
===========
References
===========
http://forum.zftpserver.com/viewtopic.php?f=4&t=2927
http://www.infoserve.de/system/files/advisories/INFOSERVE-ADV2011-09.txt
PoC-Exploit
==================
Tested on: WindowsXP (SP3)
User Permissions: Files->Read / Directories->List, Delete
=========
Solution
=========
Fixed, but no new release available, as a workaround disable "Directories->Delete"
====================
Disclosure Timeline
====================
04-Dec-2011 - informed vendor
06-Dec-2011 - fixed by vendor
10-Dec-2011 - release date of this security advisory
========
Credits
========
Vulnerabilitiy found and advisory written by the INFOSERVE security team.
===========
References
===========
http://forum.zftpserver.com/viewtopic.php?f=4&t=2927
http://www.infoserve.de/system/files/advisories/INFOSERVE-ADV2011-09.txt
Comments
Display comments as Linear | Threaded