XLight FTP Server 3.x SFTP Directory Traversal

This script is Copyright (C) 2010-2012 Tenable Network Security, Inc.


Synopsis :

The remote SFTP service is affected by a directory traversal
vulnerability.

Description :

According to its SSH banner, the version of XLight FTP server
listening on the remote host is potentially affected by a directory
traversal vulnerability in its SFTP service. A remote, authenticated
attacker, exploiting this flaw, can read and modify arbitrary files on
the remote host.

Note that this vulnerability only affects XLight FTP server 3.x as the
SFTP service was first introduced in version 3.0.

See also :

http://www.securityfocus.com/archive/1/512192/30/0/threaded
http://www.xlightftpd.com/whatsnew.htm

Solution :

Upgrade to XLight FTP Server 3.6 or later.

Risk factor :

Medium / CVSS Base Score : 6.5
(CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P)
CVSS Temporal Score : 5.4
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Misc.

Nessus Plugin ID: 47680 ()

Bugtraq ID: 41399

CVE ID: CVE-2010-2695